AudioCodes Mediant 8000 Скачать руководство пользователя страница 325 | Manualshive

Страница: 325 / 924

background image

Version 6.6

325

October 2014

Installation & Operation Manual

33. Configuring Security Settings

33.10

X.509 Public Key Infrastructure

X.509 is an ITU-T standard for Public Key Infrastructure (PKI). The X.509 standard
was adapted to the Internet by the IETF PKIX working group (RFC 3280) and is
currently the most widely used PKI standard that is utilized by many security
applications, including SIP/TLS, HTTPS (SSL) and IPSEC/IKE.

The X.509 standard is typically used by applications that perform Public Key
cryptography, also known as Asymmetric cryptography. The latter is a form of
cryptography in which a user has a pair of cryptographic keys – a Public Key and a
Private Key. The Private Key is kept secret, while the Public Key may be widely
distributed. These keys are related mathematically; however, the Private Key can not
be practically derived from the Public Key. A message encrypted with the Public Key
can be decrypted only with the Private Key.

X.509 Public Key infrastructure uses Certificates to bind together a Public Key with an
identity information, such as the name of the person or organization and their address.
The Certificates are distributed between the participating parties and can be used to
verify that the Public Key belongs to an individual.

In a typical PKI scheme, Certificates are issued by a Certificate Authority (CA) and
provide an attestation by the certificate signer (CA) that the identity information and
the public key belong together. CAs are organized in a structured hierarchical system
that represents the trust relationships between them.

Each party has a list of Trusted Root Certificates – certificates of the CAs (or their
roots) that are well-known and trusted by the party. When the certificate from the other
party is received, its signing entity (CA) is compared with the Trusted Root Certificates
list and if the match is found, the certificate is accepted.

In the Mediant 8000 Media Gateway, X.509 Certificates are used by the following
applications:



SIP/TLS – for secure SIP call control messaging.



HTTPS (SSL) – for internal communication between the SC and the Media
Gateway boards (e.g. for online provisioning of Auxiliary Files) and for secure
access to the Media Gateway board's advanced status summary via WEB
interface.



IPSEC/IKE – for secure MGCP/MEGACO call control messaging; X.509
Certificates may be used as an alternative to pre-shared key authentication
mode.

The Mediant 8000 Media Gateway uses the following files to implement X.509 Public
Key Infrastructure:



Private Key File

– contains a private key that is used to perform decryption; it is

the most sensitive part of security data and should never be disclosed to other
entities.



Certificate File

– contains a digital signature that binds together Public Key with

an identity information; Certificate may be issued by a CA (e.g. Veritas) or be self-
signed (issued by the entity itself).



CA Certificate File

– certificate of the CA that issued Certificate for the Mediant

8000 Media Gateway; optional file that if present is used to validate the Certificate
file.

«
...
323
324
325
326
327
...
»

Содержание Mediant 8000

Страница 1: ...Media Gateway Mediant 8000 Installation Operation Maintenance Manual Version 6 6 Document LTRT 92224...

Страница 2: ......

Страница 3: ...Redundant 51 10 TP 8410 Media Gateway Board 53 10 1 LED Array Display 55 11 8410 RTM Rear Transition Module 57 11 1 8410 RTM E1 T1 Trunk Connectors 58 11 2 8410 RTM Redundant 61 12 System Controller...

Страница 4: ...ty 96 15 6 Allocating IP Addresses 97 15 7 Preparing the PSTN Network Connectivity 98 15 7 1 Preparing the STM 1 OC 3 PSTN Connections 98 15 7 2 Preparing the T3 PSTN Connections 98 15 7 3 Preparing t...

Страница 5: ...as the Active board 134 21 1 5 Installing the Mediant 8000 Software on the SC Board to Operate as the Standby Board 140 21 2 Peforming Basic Configuration of the Mediant 8000 Software 146 21 2 1 Perf...

Страница 6: ...2 6 1 Benefits 191 26 2 6 2 Distribution Rules 191 26 2 6 3 Link Aggregation Control Protocol 193 26 2 6 4 Aggregated Link Failure Detection 193 26 2 6 5 Configuring Media Link Aggregation 194 26 3 Co...

Страница 7: ...the SC Board 229 27 7 Installing the Linux OS on the SC Rev 2 Board 231 27 7 1 Verifying the Current Version of the Linux OS on the SC Board 231 27 7 2 Linux OS Installation Requirements 232 27 7 3 R...

Страница 8: ...Media Gateway Controller in the EMS 277 31 2 MGCP Control Protocol 278 31 3 MEGACO Control Protocol 278 31 4 Media Gateway Controller Addressing 279 31 4 1 Via FQDN Name 279 31 4 2 Via IP Addresses 2...

Страница 9: ...2 Installing the Latest OS Security Patches from the OS Security Patch Bundle 315 33 8 File System Integrity 316 33 8 1 Viewing the File System Integrity Status 316 33 8 2 Scheduling File System Integ...

Страница 10: ...odes 361 33 18 2 Administering the ROOT User 362 33 18 2 1 Changing the ROOT User Password 362 33 18 2 2 Recovering the ROOT User Password 364 33 18 3 Administering the EMS User 365 33 18 3 1 Changing...

Страница 11: ...Call Progress Tones CPT File 423 37 2 1 1 The Call Progress Tones Section Format 423 37 2 1 2 The User Defined Tones Section Format 425 37 2 1 3 Default Configuration 426 37 2 1 4 Editing the Source...

Страница 12: ...the MTP3 M3UA Application 485 38 6 4 1 MTP3 M3UA Operational Status 498 38 6 4 2 Online Provisioning 498 38 6 4 3 Redundant Configuration 499 38 6 4 4 Advanced Configuration 503 38 6 4 5 STP Functiona...

Страница 13: ...unt Group 622 40 8 SIP Routing DNS Table 625 40 8 1 Configuring the Internal DNS Table 625 40 9 SIP SRV to IP Table 626 40 9 1 Configuring the SIP SRV to IP Table 626 40 10SRD Table 628 40 10 1 Config...

Страница 14: ...o IP Outbound Routing Provisioning Rules 669 41 6 1 2 Possible Uses for Telephone to IP Outbound Routing 669 41 6 1 3 Configuring Telephone to IP Outbound Routing 671 41 6 2 IP to Telephone Inbound Ro...

Страница 15: ...Media Handling 770 43 16 1 Media Anchoring without Transcoding Transparent 771 43 16 2 Media Anchoring with Transcoding 772 43 16 3 Transcoding Modes 774 Maintenance 775 44 Media Gateway Software Back...

Страница 16: ...Software Upgrade 813 46 3 1 Preparing the Media Gateway 813 46 3 2 Preparing the IP Network 814 46 3 3 Verifying that the Online Software Upgrade is Supported 814 46 3 4 Planning the Maintenance Time...

Страница 17: ...Media Gateway Board via WEB 857 51 Collecting Traces from the Ethernet Switch Board s Mirror Port 859 51 1 Configuring ES Mirror Filters 859 51 1 1 ES 6600 859 51 1 2 ES 2 859 51 2 Configuring Mirrori...

Страница 18: ...893 B 3 Configuring the User Environment Cisco L3 switch 893 B 3 1 IP Address 893 B 3 2 Link Aggregation 893 B 3 3 Cisco L3 Switch HSRP 894 B 3 4 Example Configuration Output 895 B 3 5 show running co...

Страница 19: ...13 2 ES 6600 RTM Panel 78 Figure 13 3 ES 2 Board Panel 81 Figure 13 4 ES 2 RTM 85 Figure 16 1 Attaching the Chassis to the Rack 101 Figure 16 2 Chassis on the Rack Front and Side Views 102 Figure 16...

Страница 20: ...Centralized TACACS Servers 377 Figure 33 8 Centralized User Authentication via RADIUS Protocol 385 Figure 33 9 PuTTY Key Generator 391 Figure 33 10 PuTTY Key Generator Public Key 392 Figure 33 11 PuT...

Страница 21: ...ation Process 741 Figure 43 5 SBC Application IP to IP Routing Types 746 Figure 43 6 SBC Application Inbound and Outbound Manipulation 754 Figure 43 7 Example of SBC Application Manipulation 754 Figur...

Страница 22: ...861 Figure 52 1 Viewing an SNMP Trap Log 873 Figure A 1 Network Example 1 One Subnet No VLANs 881 Figure A 2 Network Example 2 Three Subnets VLAN Tags One Physical Interface 885 Figure B 1 HSRP VRRP...

Страница 23: ...hysical Front Slots to Ethernet Port Mapping 83 Table 13 6 ES 2 Physical Rear Slots to Ethernet Port Mapping 84 Table 13 7 ES 2 RTM Port Pin Outs 86 Table 13 8 ES 2 RS 232 Pin Layout 86 Table 14 1 Boa...

Страница 24: ...rity Status Parameters 317 Table 33 2 Filesystem Integrity Configuration Parameters of the Media Gateway 319 Table 33 3 Media Gateway Security Settings 332 Table 33 4 X 509 Files Status Parameters of...

Страница 25: ...runk s ISDN DPNSS Parameters 509 Table 38 24 E1 T1 Trunk s CAS Parameters 512 Table 38 25 General Timing Module Settings Parameters 520 Table 38 26 TM External IF Settings Parameters 521 Table 38 27 T...

Страница 26: ...D Parameter 659 Table 41 5 Calling Name Manipulation Table for IP to Tel Table Parameter 660 Table 41 6 Calling Name Manipulation Table for Tel to IP Table Parameter 661 Table 41 7 Redirect Number Man...

Страница 27: ...760 Table 43 13 SIP SBC Message Manipulation Table 763 Table 43 14 SBC Admission Control Settings 768 Table 44 1 Automatic Backup Parameters 788 Table 46 1 New Features of Version 6 6 Software that mu...

Страница 28: ...Installation Operation Manual 28 Document LTRT 92224 Mediant 8000 This page is left blank intentionally...

Страница 29: ...TrunkPack VMAS VoicePacketizer VoIPerfect VoIPerfectHD What s Inside Matters Your Gateway To VoIP and 3GX are trademarks or registered trademarks of AudioCodes Limited All other products or trademark...

Страница 30: ...LTRT 914xx CLI Reference Guide Provides a predefined set of commands with a choice of options that comprehensively cover the maintenance tasks required on the media gateway Document LTRT 892xx EMS Us...

Страница 31: ...rk Equipment Providers NEP and System Integrators rapid time to market and reliable cost effective deployment of next generation networks The Mediant 8000 is a robust scalable and modular solution des...

Страница 32: ...Installation Operation Manual 32 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 33: ...Part I Hardware Overview This part describes the hardware overview of the Mediant 8000 chassis...

Страница 34: ......

Страница 35: ...Module ES 2 RTM ES 6600 RTM 2 Media Gateway boards The following boards may be used TP 6310 TP 8410 Up to 9 Media Gateway boards Rear Transition Modules Each Media Gateway board must be equipped with...

Страница 36: ...Installation Operation Manual 36 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 37: ...Back Views 3 Front and Back Views Note Depending on the ordered configuration the actual views of your Mediant 8000 may differ from the figures below For example you may have different type or number...

Страница 38: ...Installation Operation Manual 38 Document LTRT 92224 Mediant 8000 Figure 3 2 Mediant 8000 Back View...

Страница 39: ...en on the top of the card cage in the front of the chassis and on the bottom of the card cage in the back for identifying board placement The mid plane contains slot keys to match the appropriate boar...

Страница 40: ...s compatible with Common Bonding Network CBN and Isolated Bonding Network IBN installations The Equipment is compatible with DC C and DC I networks 4 2 Midplane Keying Each chassis slot is equipped wi...

Страница 41: ...1 PEM DC 8K Power Entry Module PEM DC 8K Power Entry Modules are used for connecting the Mediant 8000 chassis to the DC power sources Two PEM DC 8K modules are installed in the back of the chassis and...

Страница 42: ...ts PS DC 8K Power Supply modules are hot swappable Figure 5 2 PS DC 8K Power Supply Module 5 2 1 DC Input Power DC power sources must meet the following requirements 48V SELV direct current power sour...

Страница 43: ...orated grill whose honeycombed design prevents RF interference The second FM 8K Fan Tray Module provides redundant protection should one develop a fault Figure 6 1 FM 8K Fan Tray Module 6 1 Air Flow C...

Страница 44: ...Installation Operation Manual 44 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 45: ...Indicators are very brief and high level Use the EMS management interface for obtaining detailed information about the status of each hardware module Table 7 1 Alarm Indicator LED Description Color C...

Страница 46: ...Installation Operation Manual 46 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 47: ...OC 3 interfaces APS protected 3 T3 DS 3 interfaces 6 connectors 3 RX and 3 TX TP 6310 Media Gateway boards feature N 1 redundant protection which ensures that when specific TP 6310 board fails all tra...

Страница 48: ...information about the status of the board and each of its component Table 8 1 TP 6310 Board Status LED Indicators Group LED LED Label Color Description ACT Not in use PSTN for STM 1 OC3 configuration...

Страница 49: ...t is installed in the rear side of the chassis behind the corresponding TP 6310 board and features the following interfaces STM 1 OC 3 PSTN T3 DS 3 PSTN Each STM 1 OC 3 connection uses a 155 Mbps opti...

Страница 50: ...Installation Operation Manual 50 Document LTRT 92224 Mediant 8000 Figure 9 1 6310 RTM Front Panel Note The unused SFP receptacles must be covered with dust covers...

Страница 51: ...igured as a redundant board must be accompanied by a proper Redundant RTM module The latter has no connectors on it and is used for routing PSTN links from the failed TP 6310 board to the redundant bo...

Страница 52: ...Installation Operation Manual 52 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 53: ...channels per trunk 1302 DS0 channels 42 T1 interfaces with up to 24 channels per trunk 1008 DS0 channels TP 8410 Media Gateway boards feature N 1 redundant protection which ensures that when specific...

Страница 54: ...mponents Table 10 1 TP 8410 Board LEDs LED Label Description Color ACT Not in use E1 T1 1 8 E1 T1 is synchronized Green Alarm LOS LFA or AIS is detected on E1 T1 trunk Red No E1 T1 trunk Off GBE 1 2 M...

Страница 55: ...lay button located to the left of the LED display the status of the next eight consecutive trunks is indicated by the E1 T1 LEDs For example when you first press the LED Array Push button the first gr...

Страница 56: ...Installation Operation Manual 56 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 57: ...ear Transition Module is a hot swappable rear module that provides PSTN connectivity for the TP 8410 Media Gateway board It is installed in the rear side of the chassis behind the corresponding TP 841...

Страница 58: ...in female connector used for connecting trunks 26 42 Figure 11 2 8410 RTM 100 Pin SCSI Connector The 100 pin female SCSI connector is shown in the figure above must mate with a male connector that is...

Страница 59: ...1 to 25 RTM 8410 Tx Pins Tip Ring Rx Pins Tip Ring 12 24 23 74 73 13 26 25 76 75 14 28 27 78 77 15 30 29 80 79 16 32 31 82 81 17 34 33 84 83 18 36 35 86 85 19 38 37 88 87 20 40 39 90 89 21 42 41 92 9...

Страница 60: ...connector pinouts in the following table Table 11 2 8410 RTM 68 pin SCSI Connector E1 T1 Number 26 to 42 RTM 8410 Tx Pins Tip Ring Rx Pins Tip Ring 26 2 1 36 35 27 4 3 38 37 28 6 5 40 39 29 8 7 42 41...

Страница 61: ...red as a redundant board must be accompanied by a proper Redundant RTM module The latter has no port connections and is used for routing PSTN E1 T1 trunks from the failed TP 8410 board to the redundan...

Страница 62: ...Installation Operation Manual 62 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 63: ...s 1 and 2 color coded red The following hardware revisions of the SC Boards are available SC Rev 1 first generation SC board based on SUN CP2300 SBC runs SUN Solaris OS SC Rev 2 second generation SC b...

Страница 64: ...llation Operation Manual 64 Document LTRT 92224 Mediant 8000 12 1 SC Rev 1 board Solaris OS The SC Rev 1 board is based on the SUN CP2300 SBC and runs the SUN Solaris 9 OS Figure 12 1 SC Rev 1 Board P...

Страница 65: ...d has LED indicators on its front panel that are used to indicate the status of the board Table 12 1 SC Rev 1 Board LED Indicators LED Description Color Activity Located on the hard disk PMC module Bl...

Страница 66: ...ation Operation Manual 66 Document LTRT 92224 Mediant 8000 12 2 SC Rev 2 Board Linux OS SC Rev 2 is a next generation SC board that uses an Intel CPU and runs on the Linux OS Figure 12 3 SC Rev 2 Boar...

Страница 67: ...board may be used instead At any time only one serial console port is active either on the SC board or on the SA RTM board To switch between these serial console ports use the Front Rear serial port s...

Страница 68: ...net link status Only the first two LEDs are in use Normal operation 1Gbps mode Green Normal operation 100 Mbps mode Orange Link disconnected Off Storage Activity Blinks during normal operation when th...

Страница 69: ...d by the SC board management software such as control over the fan trays monitoring of the chassis voltages etc The SA RTM board may be optionally equipped with a Timing Module that is used to provide...

Страница 70: ...ard Off HOT SWAP Normal operation Off Board is ready for extraction from the chassis latches are open Blue 12 3 1 SA RTM RS 232 Console Port The SA RTM board provides RS 232 console port that may be u...

Страница 71: ...ical COM NC NO 3 MJR Major COM NC NO 3 MNR Minor COM NC NO 3 USR User Defined COM x2 NC NO IN 1 IN 2 6 One COM connector and IN 1 and IN 2 connnectors are for future use To mute the Telco alarm relay...

Страница 72: ...TRT 92224 Mediant 8000 12 3 3 1 Built In LED Interface Each SA RTM BITS Interface has LEDs that indicate its status Table 12 7 SA RTM BITS Interface LEDs Label Color Function LED 1 Off No Signal Green...

Страница 73: ...of the Mediant 8000 software Note You may not install ES boards of different hardware revisions on the same chassis 13 1 ES 6600 ES Ethernet Switch Board The ES 6600 is a hot swappable Compact PCI bo...

Страница 74: ...Installation Operation Manual 74 Document LTRT 92224 Mediant 8000 13 1 1 ES 6600 Board Panel The figure below illustrates the ES 6600 board panel Figure 13 1 ES 6600 Board Panel...

Страница 75: ...lt condition on the board Off Normal state Red Fault condition is detected Port Activity Indicates the activity status for each of the 24 available Ethernet Ports See ES 6600 Physical Slots to Etherne...

Страница 76: ...h Port Dedicated to Board Type 1 13 13 SC 2 14 14 SC 3 N A 4 15 15 Redundant TP 8410 5 N A 6 N A 7 16 16 TP 6310 or TP 8410 8 17 17 TP 6310 9 11 12 Ethernet Switch 10 N A 11 18 18 TP 6310 or TP 8410 1...

Страница 77: ...sed as the only uplink for the Mediant 8000 When Interface Separation is enabled used for Media traffic May be aggregated with ports 21 and 22 for additional capacity 21 21 Uplink When Interface Separ...

Страница 78: ...erted in the rear Mediant 8000 chassis slots behind the corresponding ES 6600 Ethernet Switch Boards It provides 10 100 1000Base T ports that are used for connecting the Mediant 8000 chassis to the ex...

Страница 79: ...Version 6 6 79 October 2014 Installation Operation Manual 13 Ethernet Switch Board Table 13 3 ES 6600 RTM Port Pin Outs Pin Number Signal Name 1 TRDB 2 TRDB 3 TRDA 4 TRDD 5 TRDD 6 TRDA 7 TRDC 8 TRDC...

Страница 80: ...way and the SC boards The ES 2 board has 24 10 100 1000Mbps ethernet ports 14 of these ports are connected to the Mediant 8000 midplane slots that correspond to SC Media Gateway boards and F LINK 10 o...

Страница 81: ...Version 6 6 81 October 2014 Installation Operation Manual 13 Ethernet Switch Board 13 2 1 ES 2 Front Panel The figure below illustrates the ES 2 board panel Figure 13 3 ES 2 Board Panel...

Страница 82: ...atus for each of the 24 available Ethernet Ports See Section ES 2 Physical Slots to Ethernet Port Mapping below to determine where the specific Ethernet Port is connected Green Port is connected Off P...

Страница 83: ...lots to Ethernet Port Mapping Chassis Slot Number Slot 9 Ethernet Switch Port Slot 19 Ethernet Switch Port Dedicated to Board Type 1 13 13 SC 2 14 14 SC 3 N A 4 15 15 Redundant TP 8410 5 N A 6 N A 7 1...

Страница 84: ...thernet switch port according to the specific interface type Table 13 6 ES 2 Physical Rear Slots to Ethernet Port Mapping Interface Separation 1 2 3 4 5 6 7 8 9 10 ONE_O_C_M OCM OCM OCM Mirror TWO_O_C...

Страница 85: ...Transition Module The ES 2 RTM Rear Transition Module is inserted in the rear Mediant 8000 chassis slots behind the corresponding ES 2 Ethernet Switch boards It provides 10 100 1000Base T ports that a...

Страница 86: ...Table 13 7 ES 2 RTM Port Pin Outs Pin Number Signal Name 1 TRDB 2 TRDB 3 TRDA 4 TRDD 5 TRDD 6 TRDA 7 TRDC 8 TRDC The following table shows the ES 2 RS 232 Terminal PIN layout Table 13 8 ES 2 RS 232 P...

Страница 87: ...lank Panel Blank Panel Slot 7 TP 6310 8 or TP 8410 6 6310 RTM or 8410 RTM Slot 8 TP 6310 7 6310 RTM Slot 9 ES 6600 or ES 2 ES 6600 RTM or ES 2 RTM Slot 10 Blank Panel Blank Panel Slot 11 TP 6310 6 or...

Страница 88: ...Installation Operation Manual 88 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 89: ...nterface For more information see Section Command Line Interface on page 107 Connect the Mediant 8000 to the IP network For more information see Section Connecting to IP Network on page 116 Connect th...

Страница 90: ......

Страница 91: ...sis must be installed in a 19 inch Telco Rack Space requirements as per GR 63 CORE are Maintenance access 762 mm 2 6 Wiring access 610 mm 2 Screws and washers Appropriate for installing the Mediant 80...

Страница 92: ...s CAT 5 Gigabit Ethernet copper cables are required for connecting the Mediant 8000 to the IP network At least two CAT 5 cables are required one for each Ethernet Switch board More cables are needed i...

Страница 93: ...h TP 8410 boards provide two cables for connecting E1 T1 trunks to each TP 8410 board one with the 100 pin SCSI connector and another with the 68 pin SCSI connector Note E1 T1 cables are not supplied...

Страница 94: ...03 Annex NAB Outlets DC outlets are required for connecting the Mediant 8000 For more information see Power System on page 41 Circuit breaker To meet the system power HA scheme the system should not b...

Страница 95: ...4 F 4 1 2 Thermal Shock 40 C to 25 C 158 F to 77 F within 5 minutes 4 1 1 1 4 1 1 2 Normal Range Humidity 5 to 90 4 1 2 Nominal Relative Humidity 70 wet bulb 4 1 2 Altitude 60 to 3048 m 10 000 ft 4 1...

Страница 96: ...nnecting the Media Gateway to the IP Network on page 178 and Appendix Examples of IP Network Connectivity Configuration on page 877 Verify the configuration of the IP network available on the site and...

Страница 97: ...ming maintenance tasks Global IP Address for SC boards 1 A Global SC address is assigned to the Active SC board and used by EMS or any other management server for connecting to the Mediant 8000 manage...

Страница 98: ...inks have the following multiplexing hierarchy VC12 for SDH VT1 5 for SONET 4 Investigate APS Automatic Protection Switching capabilities of the connected STM 1 OC 3 PSTN equipment 5 Investigate the c...

Страница 99: ...nnect earthing contacts to the ground Connect the Mediant 8000 to power sources and power it up 16 1 Unpacking Checking Contents The Mediant 8000 configured and populated as per the customer s order i...

Страница 100: ...flow required for safe operation on the equipment is not compromised Mechanical Loading Mounting of the equipment in the rack should be such that a hazardous condition is not caused due to uneven mech...

Страница 101: ...on 2 While the two people are holding the chassis in place a third person fastens the chassis to the rack rails using eight screws not provided four on each side of the chassis or as appropriate for y...

Страница 102: ...earth connection s resistance must not be greater than 0 1 ohm Earthing lugs and screws are supplied with the chassis To earth the chassis Locate two pairs of the earthing connectors on the PEM modul...

Страница 103: ...by lightning surges installation of equipment should be compatible with Class 3 classification as defined by EN61000 4 5 Annex B which specifies that the surge level may not exceed 2kV 16 5 Powering U...

Страница 104: ...bottom rear of the chassis see the figure above and provide redundant power input terminal blocks for DC Each terminal block must be connected to a separate power source to guarantee redundancy of the...

Страница 105: ...overs from the terminal blocks 3 Use two insulated crimp terminal tongues for stud size for making the connections to the terminal block supplied with the Mediant 8000 Prepare the two connections usin...

Страница 106: ...EM protective plastic cover with the secured Hex spacers and fasten the screws as illustrated in the figure below Figure 16 5 Secure the PEM Plastic Cover Screws Note The plastic covers spacers and sc...

Страница 107: ...t breakers set to I One is enough to power up the chassis Table 16 1 PEM LED Functional Unit Indicator Indicator Status Description PEM PEM Ready Green The PEM is correctly receiving power from the ba...

Страница 108: ...Installation Operation Manual 108 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 109: ...LI via an RS 232 Serial Console Connection to the CLI via RS 232 serial console is typically needed when IP connectivity with the Mediant 8000 is not available e g during initial installation A regula...

Страница 110: ...232 serial port or the serial port on the SA RTM 2 If you are using a PC run the terminal client software and choose the serial port where the RS 232 cable is connected Figure 17 1 Using PuTTY for RS...

Страница 111: ...Version 6 6 111 October 2014 Installation Operation Manual 17 The Command Line Interface CLI Figure 17 2 PuTTY RS 232 Serial Connection Settings...

Страница 112: ...e CLI interface on a specific SC board use the corresponding corresponding SC board s private IP address 17 2 1 Connecting to the CLI via Secure Shell SSH The SSH software is not available on Windows...

Страница 113: ...user may not be deleted however its password may be modified CLI administrators this group of users should be used for performing regular Mediant 8000 maintenance and configuration tasks the root user...

Страница 114: ...lation Use it to perform most maintenance and configuration tasks Note however that the acladmin is a regular CLI administrator user and therefore may be deleted and other CLI users may be created ins...

Страница 115: ...ver that the following advanced security features may affect the CLI user s ability to log in CLI Interface Access Control see Section CLI Interface Access Control on page 389 for details Password les...

Страница 116: ...nstallation Operation Manual 116 Document LTRT 92224 Mediant 8000 client238 su root Password Note Do not omit the dash from the su root command otherwise root user environment will be improperly set u...

Страница 117: ...undant IP network connection for the Mediant 8000 and therefore should not be used for live deployments For an initial installation of the Mediant 8000 in a customer environment an IP subnet that does...

Страница 118: ...previous configuration of SC boards Note All IP addresses and hostnames in the following examples are for demonstration purposes only and must be designated by the customer according to the network s...

Страница 119: ...5 Uninstall the software 0 Quit Choose 0 5 1 This option will change IP parameters of current SC board Note On SC boards with v5 6 or earlier software version installed the install command may produc...

Страница 120: ...dated etc nodename Updated etc defaultrouter Updated etc hostname dmfe0 Updated etc netmasks Updated hostname Done 12 The SC board must be rebooted to activate the new configuration To reboot the SC b...

Страница 121: ...twork connectors are located on the ES RTM modules in the rear of the Mediant 8000 chassis See ES 6600 RTM Rear Transition Module on page 78 and ES ACS 38 SINGLE ES Ethernet Switch Board on page 80 fo...

Страница 122: ...e IP Network on page 178 for detailed instructions on how to perform the advanced IP network configuration e g define interface separation and or VLAN tagging As part of this advanced configuration yo...

Страница 123: ...Do NOT stare directly into the beam as this can damage your eyesight 19 1 Connecting STM 1 OC 3 PSTN Cables The following parts are needed to connect the STM 1 OC 3 PSTN cables to the TP 6310 boards...

Страница 124: ...interface redundancy it is recommended to connect two STM 1 OC 3 links to each 6310 RTM module Care in Handling Fiber Optic Cabling When handling the fiber optic cables be sure to note the following E...

Страница 125: ...RTM module Use a proper cable with MOLEX PN 73100 0255 or the equivalent mini SMB male connector Figure 19 2 T3 Male Connector MOLEX PN 73100 0255 19 3 Connecting E1 T1 PSTN Cables TP 8410 Boards E1...

Страница 126: ...Installation Operation Manual 126 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 127: ...auge of 20 AWG for standard copper wire may be used To connect the contact relays to Telco alarm equipment 1 Open the screws that connect the terminal block to the PCB s connector 2 Unplug the termina...

Страница 128: ...Installation Operation Manual 128 Document LTRT 92224 Mediant 8000 Figure 20 2 Inverse Logic External Alarm Equipment Connection 4 Plug in the terminal block into the PCB connector...

Страница 129: ...he Ethernet Switch boards and distributing the proper software and configuration files to them The Mediant 8000 is typically supplied with the proper software pre installed on it Therefore most custom...

Страница 130: ...ation package for SC Rev 2 boards The Mediant 5000 Mediant 8000 System Software Installation CD also contains additional documentation and software utilities The Mediant 8000 software must be installe...

Страница 131: ...e SFTP SCP protocols instead due to weak security features of FTP protocol that expose username and passwords in clear text You can use any standard compliant SFTP SCP FTP client software to transfer...

Страница 132: ...em are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system is prohibited and could be sub...

Страница 133: ...mation see Section Command Line Interface on page 107 2 Login as a regular CLI user e g acladmin and provide the corresponding password For more information see Section Logging into Command Line Inter...

Страница 134: ...e 107 2 Login as root user For more information see Section Logging in as a Root User on page 115 3 At the prompt type install acladmin tg_6 6 16_linux install and press Enter Replace acladmin with th...

Страница 135: ...xtracted SC board must be configured to complete the installation Choose one of the following configuration options a configure now you will be prompted to perform a new SC configuration b copy config...

Страница 136: ...figuration Software installation will fail if these parameters do not match the IP addresses currently configured on both SC boards If you wish to change the private IP address of an SC board see Conf...

Страница 137: ...he Linux OS the Enable Security prompt does not appear as the software always operate in a Secure Mode See Secure Operation Mode on page 306 for details 12 At the SC Root Password prompt enter the new...

Страница 138: ...installation successfully completes the SC software configuration it will determine whether OS Patches need to be installed on the specific SC board OS patches installation ensures that the latest op...

Страница 139: ...Gateway software on both SC boards do not reboot the SC board in slot 1 until the installation of the SC board in slot 2 is completed REBOOT now y n y y Are you sure y n y y If you install the softwar...

Страница 140: ...e 115 3 At the prompt type install acladmin tg_6 6 16_linux install and press Enter Replace acladmin with the name of the CLI user that you used while transferring the Mediant 8000 package to the SC b...

Страница 141: ...n Choose one of the following configuration options a configure now you will be prompted to perform a new SC configuration b copy configuration an existing SC configuration will be copied from another...

Страница 142: ...be prompted to enter the IP address of the Active SC board or the board to operate as the Active board if you install software on both SC boards Enter the corresponding IP address and press Enter Acti...

Страница 143: ...o the REBOOT now prompt on its CLI interface wait for 2 minutes until the Active SC board completes the reboot and re try copying the configuration 12 You are prompted to start configuring To commence...

Страница 144: ...ly a few minutes 14 After the installation successfully completes you will be prompted to reboot the SC board SC board must be rebooted to complete the installation After the reboot do the following 1...

Страница 145: ...ect to its CLI interface and login as a regular CLI user that you used to transfer the installation package e g acladmin Type the rm tg_6 6 16_linux install command to remove the Mediant 8000 installa...

Страница 146: ...y matches the current network configuration of the SC boards The basic configuration of the Mediant 8000 software is typically carried out when the Mediant 8000 is moved to the new IP environment Comm...

Страница 147: ...o perform the basic configuration of the Mediant 8000 software on the SC board to operate as the Active board in Slot 1 1 Connect to the CLI interface on the SC board to operate as the Active board in...

Страница 148: ...he Basic IP Network Parameters of SC Boards on page 117 8 At the Time Zone prompt enter the local time zone where the Media Gateway resides The time zone may be specified as an offset from the Greenwi...

Страница 149: ...rules when specifying a new root password Password must have at least 8 characters Password must contain at least two alphabetic characters and at least one numeric or special character In this case a...

Страница 150: ...y and pressing Enter on the respective SC board s CLI interfaces 14 The SC board reboots It typically takes 2 minutes to complete the reboot process The Media Gateway software starts automatically aft...

Страница 151: ...10 7 13 91 10 7 13 91 Verify that Active SC 10 7 13 91 responds to ping 10 7 13 91 is alive Configuration will be copied from Active SC 10 7 13 91 via SSH 6 At the CLI user name prompt enter the name...

Страница 152: ...fter the configuration successfully completes you are prompted to reboot the SC board SC board must be rebooted to complete the re configuration IMPORTANT If you re configure the Media Gateway softwar...

Страница 153: ...1 Connect to the CLI interface on the specific SC board For more information refer to Command Line Interface on page 107 2 Login as a regular CLI user e g acladmin For more information refer to Loggin...

Страница 154: ...to Configuring Connectivity between Media Gateway and EMS Server on page 171 Once you have completed this configuration open the EMS client establish connection with the EMS server and verify that th...

Страница 155: ...must be configured on the Mediant 8000 SS7 SIP MGC and vary for each deployment Nevertheless the following configuration tasks should be performed in most of the deployment scenarios Configuring IP n...

Страница 156: ...Installation Operation Manual 156 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 157: ...Part III Configuring and Operating the Media Gateway Part 1 This part describe how to configure and operate the Media Gateway...

Страница 158: ......

Страница 159: ...ine interface Syslog interface 23 2 AudioCodes Element Management System EMS The Mediant 8000 is typically accompanied by the AudioCodes Element Management System EMS that is used for managing the Med...

Страница 160: ...xx 23 5 Syslog Management Interface In addition a Syslog management interface may be used to perform status monitoring For detailed information see Syslog Management Interface on page 175 23 6 Managed...

Страница 161: ...shown above illustrates only a sample containing the most basic and widely used MOs The actual configuration typically contains hundreds of MOs representing different physical and logical resources 23...

Страница 162: ...d to complete an unlock action In the intermediate state the Administrative State of the corresponding MO is unlocked however the Operational State of the MO is disabled As soon as the Media Gateway b...

Страница 163: ...Operation Manual 23 Overview Figure 23 2 Graphical EMS Status Screen Figure 23 3 Textual EMS Status Screen For easy navigation the EMS GUI divides MOs into group types For example all security relate...

Страница 164: ...select the MO name in the Navigation pane on the left and then select the MO instance in the corresponding status screen on the right by clicking on the corresponding drawing in graphical status scree...

Страница 165: ...tribute may be configured at any time No specific state of the corresponding MO is enforced None Online The corresponding MO must be locked prior to altering the specific attribute Offline The father...

Страница 166: ...Manual 166 Document LTRT 92224 Mediant 8000 3 In the settings screen configure parameters and click Apply to apply the new configuration Figure 23 5 EMS Configuration Pane Figure 23 6 Example Settings...

Страница 167: ...Browser screen by default Events provides information about a specific event that occurred in the past and is not necessarily currently relevant to the system events are not cleared and therefore shou...

Страница 168: ...Color Clear Green Indeterminate White Minor Yellow Warning Blue Major Orange Critical Red When an alarm is raised on the MO the severity attribute of the MO itself is updated accordingly In addition...

Страница 169: ...Version 6 6 169 October 2014 Installation Operation Manual 23 Overview Figure 23 8 MOs in the EMS Color Ccoded according to their Severity...

Страница 170: ...s screen that have colors other than Grey or Green When you select a specific component the Alarm Browser screen is updated to display Alarms and Events that are applicable for the specific component...

Страница 171: ...d for all SNMP managers or alternatively configured for specific SNMP managers only 24 1 Configuring Connectivity between the Media Gateway and the EMS Server After initial Media Gateway software inst...

Страница 172: ...SNMP mode prompt choose the SNMP management mode to be used by the Media Gateway SNMP Mode 0 SNMPv2 1 SNMPv3 2 SNMPv2 IPSEC 0 0 7 At the EMS Server IP Address prompt enter the IP address of the EMS s...

Страница 173: ...authorize write operations performed by the EMS server and other SNMP managers Press Enter to leave current SNMP Write Community string unchanged Default value for SNMP Write Community string is priva...

Страница 174: ...igure the EMS Server in exactly the same way Do it as follows If Media Gateway is already listed in the MG Tree right Click it and choose Details from the menu Otherwise add Media Gateway to the MG Tr...

Страница 175: ...rmed as follows Up to two additional SNMP managers called NMS and OSS may be configured via the Media Gateway Management Settings configuration screen in the EMS For each server an IP address and trap...

Страница 176: ...Installation Operation Manual 176 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 177: ...ormance monitoring tasks are not supported via the Syslog management interface use the SNMP or CLI interfaces instead Syslog messages generated by the Media Gateway are compliant with RFC 3164 They ha...

Страница 178: ...he Configuration pane click Management Settings the Management Settings screen is displayed 3 Configure the following parameters External Syslog Server External Syslog Server IP Address External Syslo...

Страница 179: ...the final one e g it will use one network interface only while final configuration may use multiple interfaces Configure IP network topology as described in Configuring Network Topology on page 182 De...

Страница 180: ...to service Lock unlock actions must be performed on ES boards sequentially one at a time in the following order Lock the ES boards in both Slot 9 and 19 Unlock the ES board in Slot 9 and wait till it...

Страница 181: ...lock esboard 9 Do you really want to lock moGW moSwitchBoard 9 y n y Performing lock action on moGW moSwitchBoard 9 OK lock esboard 19 Do you really want to lock moGW moSwitchBoard 19 y n y Performing...

Страница 182: ...ue Enabled 1 indicates that the board is back in service SC 1 moGW show esboard 19 param OperationalState OperationalState Enabled 1 13 If after completing the above procedure there is still no networ...

Страница 183: ...lt network configuration Or alternatively use different network segments that are dedicated to the transmission of a specific traffic type Each network segment subnet has its own address space e g the...

Страница 184: ...security features For example users connected to the OAM subnet may not in any possible way examine or affect call control and or media traffic that flows in the separate subnets This prevents possib...

Страница 185: ...diant 8000 must be connected to each relevant subnet existing on site Connection details depend on the amount of available subnets and the type of their separation In the simplest default configuratio...

Страница 186: ...onal subnet separation on CM network interface is possible via the use of VLAN tagging Three O C M three network interfaces are used each one dedicated to a corresponding traffic type OAM management C...

Страница 187: ...s and then unlock the Media Gateway as described in Activating New Network Interfaces Configuration on page 214 To configure IP Network Interfaces 1 Click to access the Media Gateway status screen 2 L...

Страница 188: ...AN ID tag The VLAN ID may be generated by the end station and carried in the Ethernet frame itself Or alternatively it may be assigned by the Layer 3 switch based on the port used 26 2 5 1 Using Tagge...

Страница 189: ...only and doesn t affect SC boards The Media and Control Subnets VLAN Tags table is used to configure Media and Control VLAN Tagging The Media and Control Subnets VLAN tags configuration is handled dif...

Страница 190: ...f future network To configure VLAN Tags for Media and Control Subnets for ES 2 1 Click to access the Media Gateway status screen 2 In the Navigation pane click Networking and then in the configuration...

Страница 191: ...vailability A properly designed link aggregation scheme will prevent the failure of any single component link from disrupting communication between the interconnected devices For the Mediant 8000 this...

Страница 192: ...is rule is not recommended for use since source MAC addresses of Media Gateway boards may not be controlled by the user and may not be evenly distributed Destination MAC packets are distributed based...

Страница 193: ...sec which is determined by the Link Aggregation Timeout configuration parameter Note This protocol is only supported for the ES 6600 switch not for the ES 2 switch 26 2 6 4 Aggregated Link Failure De...

Страница 194: ...the Network Settings screen is displayed 3 In the Interfaces and VLAN Settings tab configure the link aggregation parameter as described in the table below Table 26 2 Media Link Aggregation Settings P...

Страница 195: ...rce XOR Destination IP Online Defines rules for traffic distribution across aggregated links Aggregation Distribution Rule For ES 2 Enum Source MAC Destination MAC Source XOR Destination MAC Source IP...

Страница 196: ...the private IP addresses of each SC board See Configuring the Basic IP Network Parameters of SC Boards on page 117 for details Configuring the global virtual IP address for SC boards this step config...

Страница 197: ...management subnet segment SC1 and SC2 IP Addresses private IP addresses of the SC boards located in Slots 1 and 2 correspondingly in this additional OAM management subnet segment Global IP Address glo...

Страница 198: ...e complicated IP network architectures different segments subnets may be used to transmit different types of traffic as described below OAM Subnet used to transmit management traffic e g SNMP CLI SSH...

Страница 199: ...played 5 Configure the Subnet properties according to the Subnet Properties table below Table 26 3 Subnet Properties Parameter Name Type Provisioning Type Description Subnet Name String Up to 16 chars...

Страница 200: ...rations that may be assigned to one or more Media Gateway board This set consists of the following One or more Subnets to which the specific Media Gateway board is connected Quality Of Service QoS set...

Страница 201: ...oS settings as described in Quality of Service on page 206 26 4 2 2 Attaching IP Network Profile to the Media Gateway Board A newly created IP Network Profile must be attached to the corresponding Med...

Страница 202: ...elect the desired Media Gateway board 3 In the Actions bar click Lock to stop the service on the Media Gateway board 4 In the Navigation pane click Networking and then in the configuration pane click...

Страница 203: ...ng the corresponding configuration objects Note When the Mediant 8000 wishes to send an IP packet it scans the static routes table starting from the lowest index the first entry that matches the IP pa...

Страница 204: ...e Gateway IP Address to which packets to the destination entity will be routed Comment String Up to 200 chars Instant Defines the user defined comment for specific static route 26 5 1 2 Static Routes...

Страница 205: ...tic route applies Destination IP Address String Up to 40 chars Instant Defines the IP Address of the destination entity Destination Prefix Length Integer 0 128 Instant Defines the Prefix Length of the...

Страница 206: ...Mediant 8000 Very Low Very Low N A Network Communications between network devices within one administrative domain The following Mediant 8000 management protocols belong to this category ICMP DNS NTP...

Страница 207: ...ffic based on the Priority header Packets with a higher priority value will be processed prior to packets with a lower priority within the same VLAN Note Ethernet Frame Priority Header configuration w...

Страница 208: ...creen and configure parameters in the Quality Of Service tab For Media and Control subnets open the Network Profile s configuration screen and configure parameters in the Quality Of Service tab Table...

Страница 209: ...Description Premium Control Priority Integer 0 7 Online Defines Layer 2 Class Of Service as per IEEE 802 1P for the Premium service class applied to call control traffic Premium Control Diffserv Inte...

Страница 210: ...e and configure the IPv6 Default Gateway parameter 3 Attach the IP Network Profile to the Media Gateway boards and configure the Media Gateway Board s IPv6 addresses as described in Attaching IP Netwo...

Страница 211: ...ad Only Indicates name of the IPv6 Subnet associated with this Realm Port Range Start Integer 1 60000 Offline Defines the starting port for the range of Media Subnet UDP ports Value 1 defines Media Re...

Страница 212: ...ransmit DNS requests after this number of retries the gateway attempts to connect to the secondary DNS server IP ARP Aging Enum Disable Enable Instant Defines whether the aging mechanism is applied to...

Страница 213: ...translation for RTP RTCP and T 38 packets When enabled the device compares the source IP address of the first incoming packet to the remote IP address stated in the opening of the channel If the two...

Страница 214: ...when lock and unlock maintenance actions are performed on both Ethernet Switch ES boards Users who modify the affected configuration will be forced to perform lock unlock of the ES boards prior to unl...

Страница 215: ...e connection with the chassis is lost until the user configures the external Switch Route with the new VLAN ID While both ES are locked 1 Lock the ES boards in both slots 9 and 19 2 Configure the OAM...

Страница 216: ...board in slot 9 completes the restart This may take up to 10 minutes When the ES board returns to service its Operational State is changed to Enabled and the board s color is changed to Green in the...

Страница 217: ...cation on ES 6600 Boards Interface Separation ES boards Ports Allocation One OCM default configuration Use Port 20 for connection to the IP network If Link Aggregation is enabled use Ports 21 and 22 f...

Страница 218: ...hat carries Call Control and Media traffic If Link Aggregation is enabled use Port 21 and for additional connection to the LAN network Three O LAN WAN Use Port 18 for connection to the OAM management...

Страница 219: ...trol network Use Port 3 for connection to the Media network If Link Aggregation is enabled use Ports 4 and 5 for additional connection to the Media network Two O CM Use Port 1 for connection to the OA...

Страница 220: ...AN Use Port 1 for connection to the OAM management network Use Port 2 for connection to the LAN network that carries Call Control and Media traffic Use Port 5 for connection to the WAN network that ca...

Страница 221: ...available Ethernet Switch ES boards located in slots 9 and 19 must be connected to a corresponding external Layer 3 Switch or Router as shown in the figure below Ensure that you connect all relevant...

Страница 222: ...00 This configuration ensures the proper Layer 3 switches activity switchover in case of a switch failure When the priority is properly set and both external Layer 3 switches are up the switch with th...

Страница 223: ...s All management operations configuration fault and status monitoring are performed through the SC boards See the System Controller SC Board for a detailed description of the SC board s hardware 27 1...

Страница 224: ...y attributes When the SC board is functioning properly its Operational State is set to Enabled Severity is set to Clear and in the EMS the SC board is colored green When the SC board s functionality i...

Страница 225: ...ring locked SC board back to service SC board is rebooted during the unlock action and it may take up to 5 minutes before it returns back to service 27 4 SC Board Hardware Revisions The following hard...

Страница 226: ...e on SC boards will be dealt with as a malicious action and reported as a Security Alarm since it may potentially affect the normal operation of the Mediant 8000 software see File System Integrity Che...

Страница 227: ...is important to use the Solaris OS installation image that is provided by AudioCodes 27 6 1 Verifying the Current Version of the Solaris OS on the SC Board Version 6 6 of the Mediant 8000 software re...

Страница 228: ...n the SA RTM must also be in place behind the SC board during the installation process 27 6 3 Preparing the Install Image on the Install Server EMS Prior to installing the Solaris OS on the SC board f...

Страница 229: ...ogin as the root user the default password is root 3 Type ifconfig a and press Enter to identify the SC hostname IP address and MAC address of the SC board Sample values are shown in red in the exampl...

Страница 230: ...232 console terminal connected to the SC board and at the prompt type boot net install and press Enter Make sure to separate each word with a space ok boot net install The Solaris 9 OS installation t...

Страница 231: ...SC boards it is important to use the Linux OS installation image provided by AudioCodes 27 7 1 Verifying the Current Version of the Linux OS on the SC Board Version 6 6 of the Mediant 8000 software r...

Страница 232: ...damaged Network connection to the SC board via SSH is required OS re installation via the RS 232 console The OS is re installed from a local copy of the OS installation image that was created during t...

Страница 233: ...tion via SSH The Linux OS will be re installed from a local copy of the OS installation image that was created during the initial OS installation on the SC board and is stored on a hidden partition Th...

Страница 234: ...re connect to the SC board when the Linux OS re installation has completed After Linux OS re installation only the following 2 users will remain on the SC board 1 acladmin 2 root When Linux OS re inst...

Страница 235: ...f the OS installation image that was created during the initial OS installation on the SC board and is stored on a hidden partition An RS 232 serial console connection to the SC board is required to p...

Страница 236: ...roceed with the installation press any key To abort the installation reboot SC board now 6 At the warning prompt press any key to proceed with the re installation 7 The re installation will take appro...

Страница 237: ...e information see Command Line Interface on page 107 2 Login as the root user For more information see Section Logging in as a Root User on page 115 3 To change the default password for acladmin user...

Страница 238: ...nstallation from the USB Flash Drive via the RS 232 serial console An empty 1 GB or larger USB Flash Drive to be provided by the customer is required to perform this type of OS installation The drive...

Страница 239: ...m and press Start to start the formatting Figure 27 2 Format New Volume 4 When the formatting has completed insert Linux OS for SC Board CD ROM into the CD DVD drive on your Windows PC 5 Open My Compu...

Страница 240: ...he drive letter that corresponds to the CD DVD drive where Linux OS for SC Board CD ROM is inserted 8 In the USB Drive combo box choose the drive letter that corresponds to the USB Flash Drive 9 Press...

Страница 241: ...32 Serial Console see Command Line Interface on page 107 3 Restart the SC board by pressing the hidden Reset pin located on the SC board s front panel or by extracting and re inserting the SC board in...

Страница 242: ...ic mode The installation progress will be reported on the RS 232 serial console as follows Package Installation Name parted 1 8 1 23 el5 i386 Size 1354k Summary The GNU disk partition manipulation pro...

Страница 243: ...enter the new password To change the default password for root user type passwd root and enter the new password 4 To configure the SC board s IP network parameter at the prompt type network config and...

Страница 244: ...bootable USB Flash Drive a USB CD DVD drive to be provided by the customer may be used to perform the Linux OS installation on the SC board The installation instructions for both mechanisms are very...

Страница 245: ...the chassis mid plane and redundant RTM Depending on the configuration this activity switchover may or may not affect established calls To restore High Availability you must attend to the failed Medi...

Страница 246: ...roperly its Operational State is set to Enabled Severity is set to Clear and in the EMS the board is colored green When the Media Gateway board s functionality is degraded an alarm indicating the prob...

Страница 247: ...on of TP 6310 and TP 8410 boards is not supported A combination of OC 3 STM 1 and T3 boards is supported however multiple Redundancy Groups may be required to provide high availability for all boards...

Страница 248: ...ly Make Board Redundant makes a regular Media Gateway board into the Redundant board For more information see Section Configuring Redundant Media Gateway Board on page 249 Make Board Non Redundant mak...

Страница 249: ...a new Redundant board After changing the configuration of the active boards to ensure the availability of the best possible Redundancy Mode for all boards To configure the Redundant Media Gateway boar...

Страница 250: ...uption Both channel capacity and active calls connection is preserved Warm Redundancy The Media Gateway board is only partially backed up by the Redundant board When a Media Gateway board fails or a u...

Страница 251: ...dancy Groups list is displayed 3 Select a specific row and then in the configuration pane click Redundancy Group Settings the Redundancy Group Settings screen is displayed 4 Set Redundancy Mode parame...

Страница 252: ...tches in Hardware and Application Types of normal and redundant Media Gateway boards Mismatch in the Hardware and or Application Types of normal and redundant Media Gateway boards may degrade Actual R...

Страница 253: ...Redundancy mode for all Media Gateway boards to ensure that the system is configured to provide proper protection in case of board failure To view the redundancy mode for all Media Gateway boards 1 C...

Страница 254: ...another board the failed board is automatically restarted Service is typically restored on the failed board when it completes the restart When the Media Gateway board fails and then there is an activi...

Страница 255: ...us screen 2 In the Navigation pane select Redundancy Redundancy Groups the Redundancy Groups list is displayed 3 Use the or buttons to add or remove entries 4 Select a specific row and then in the con...

Страница 256: ...ndant Board In Use Enum Unused Used Read Only Indicates whether the Redundant board is currently used for back up of a specific normal board Failed Board Integer 1 19 Read Only Indicates the number of...

Страница 257: ...cy Group Integer 0 3 Instant Indicates the Redundancy Group to which this Media Gateway board is associated Actual HA Mode Enum None Hot Warm Read Only Indicates the actual level of protection provide...

Страница 258: ...avigation pane select Redundancy Redundancy Groups the Redundancy Groups list is displayed 3 Select a specific row and then in the configuration pane click Redundancy Group Settings the Redundancy Gro...

Страница 259: ...c customer order However customers may upgrade the License Key in the future to gain access to additional functionality e g to increase the amount of available MTP2 SS7 links To upgrade the License Ke...

Страница 260: ...The newly added License Key file is applied 6 Repeat this procedure for all of the Media Gateway boards that require the License Key update If multiple Media Gateway boards in the chassis require Lic...

Страница 261: ...Link interconnects between the two ES boards and provides internal communications between the boards inside the chassis 29 2 ES Boards in the EMS In the EMS the Active ES board is colored black and th...

Страница 262: ...the chassis Media Gateway boards and SC boards to use a specific ES board When performed on the Standby ES board it causes the ES boards activity switchover Clear Severity clears Minor severity on th...

Страница 263: ...Part IV Configuring and Operating the Media Gateway Part 2 This part describes the configuration and operation of the Media Gateway...

Страница 264: ......

Страница 265: ...lient and has the following capabilities Version 4 of the NTP protocol as as per the latest draft available at NTP Server http www ntp org is implemented Backward compatible with Version 3 of the NTP...

Страница 266: ...ections 30 3 Using External NTP Servers In the field deployments it is recommended to use external NTP server s as a time and date synchronization source for the Media Gateway and EMS server For redun...

Страница 267: ...ver as an NTP server reference source in the NTP Servers table change the Administrative State of the EMS server entry EMS server s IP address to Locked for more information see Section NTP Synchroniz...

Страница 268: ...erver uses two Stratum 2 NTP servers as its NTP clock source and the Media Gateway also uses two Stratum 2 NTP servers as its NTP clock source Therefore when this setup option is used both the EMS and...

Страница 269: ...that due to the nature of the NTP protocol implementation there may be a significant lag in the update of the Operational State and the NTP Server Status attributes For example when the NTP server is...

Страница 270: ...rnal NTP servers and the EMS server They also operate as NTP servers for VoP boards inside the chassis providing time and date synchronization to the latter Peer connection between the SC boards ensur...

Страница 271: ...select Unlock to activate the configuration 7 Repeat steps 4 6 for additional external NTP Servers that are available Note The NTP Servers List always contains the EMS server as its first entry You ma...

Страница 272: ...nt LTRT 92224 Mediant 8000 Parameter Name Type Provisioning Type Description Prefer Mode ENUM yes no Online Prefer this NTP Server to others NTP Version INTEGER 3 4 Default 4 Read Only NTP Version num...

Страница 273: ...er Read Only Indicates the status of the connectivity between the Media Gateway and the NTP server The following values are supported Reject server is discarded due to high stratum and or failed sanit...

Страница 274: ...o the nearest power of 2 Reachability String Read Only Shift register of 8 bits used to determine the reachability status of the peer with bits entering from the least significant rightmost end A peer...

Страница 275: ...ronized the value is zero Originate Timestamp String Read Only Local time in timestamp format at the peer when its latest NTP message was sent If the peer becomes unreachable the value is set to zero...

Страница 276: ...Installation Operation Manual 276 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 277: ...ontrol protocols When the MEGACO protocol is used the Media Gateway board may be divided into Virtual Gateways Each Virtual Gateway may be associated with a different MGC entity See MEGACO Virtual Gat...

Страница 278: ...nts In addition the Call Agent can instruct the endpoints to detect certain events and generate signals The endpoints automatically communicate changes in service state to the Call Agent Also the Call...

Страница 279: ...y Call Agent IP address Redundant DNS servers may be configured as an alternative means of FQDN name resolution 31 4 2 Via IP Addresses If the MGC is to be addressed via IP addresses you must provisio...

Страница 280: ...TS The pattern should contain two additional asterisk characters to be substituted by Trunk and Channel accordingly TGW T3 Trunk TS The pattern should contain three additional asterisk characters to...

Страница 281: ...mber of Termination can be controlled via the MEGACO RTP Term Offset parameter 31 5 2 1 Example 1 Phys Term Name Pattern ds e1 Include Board Index no Phys Termination Type TGW Trunk TS Trunk Offset 1...

Страница 282: ...name If the criteria above is not met the configured FQDN name is used as domain name 31 7 MEGACO Virtual Gateways The Mediant 8000 supports MEGACO Virtual Gateway functionality as defined in the H 2...

Страница 283: ...t contains a list of E1 T1 trunks and a numeric Virtual Gateway Index that is used to associate MGC IP FQDN addresses with the specific Virtual Gateway By default for each Media Gateway board a single...

Страница 284: ...al load VGW with higher values process more messages The priority is applicable between VGW with different network configuration port transport type realm Media Realm Integer 0 16 Online Defines the d...

Страница 285: ...Controller s Administrative state will be updated as follows If at least one associated Media Gateway board is unlocked MGC is unlocked If all associated Media Gateway boards are locked MGC is locked...

Страница 286: ...Defines the redundant FQDN name of the Media Gateway Controller Applicable to the MGCP call control protocol only Table 31 5 Media Gateway Controller Endpoint Names Parameters Parameter Name Type Pro...

Страница 287: ...N Address parameters according to the table below Table 31 6 MGC IP FQDN Address Parameters Parameter Name Type Provisioning Type Description Address Format Enum IPv4 0 DNS 2 Online Defines the format...

Страница 288: ...irtual GW that represents Media Gateway board as a whole For MGCP protocol leave it at its default 1 to associate the MGC with the default Virtual GW that represents the Media Gateway board as a whole...

Страница 289: ...rameter Name Type Provisioning Type Description Board FQDN String Up to 40 chars Online Defines the FQDN name of the Media Gateway board If the FQDN name is empty or equals none the IP address of the...

Страница 290: ...s the H 248 2 TDM endpoints connection mode Disable connect two TDM terminations through internal IP loopback In this mode 2 DSP are used and channels will be opened with the default coder and default...

Страница 291: ...rated on a per board basis DLCX by GW Enum Enable Disable Instant This parameter applies to MGCP only Enables a Delete connection DLCX message from the media gateway side Disconnect On Broken Connecti...

Страница 292: ...Installation Operation Manual 292 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 293: ...dancy Model for details V5 2 Links each TP 8410 board features 42 E1 trunks that may be configured as V5 2 links or as E1 transparent trunks without voice e g for PSTN clock synchronization V5 2 Inter...

Страница 294: ...rt the service on the specific V5 2 Interface Interface Operational State indicates the actual service state on the V5 2 Interface valid values are Offline service is not provided due to local Offline...

Страница 295: ...o be performed by the soft switch Link ID Check initiates the link identification check that ensures that there is no mismatch between the ends of the link the link s Link ID Check Status attribute is...

Страница 296: ...e desired TP 8410 Media Gateway board 3 In the Navigation pane select Media and in the Configuration pane click Media Settings the Media Settings screen is displayed 4 The following Media Gateway boar...

Страница 297: ...t is displayed 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click V5 2 Interface Settings the V5 2 Interface Settings screen is displayed 6 Confi...

Страница 298: ...d 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click V5 2 Link Settings the V5 2 Link Settings screen is displayed 6 Configure V5 2 Link paramete...

Страница 299: ...ht be either The Header or Version Line It is the first line in the file It describes the version number as follows 1 0 version A Comment Line It should start with and may be placed anywhere in the fi...

Страница 300: ...field type a meaningful description f Click to add the configuration file to the list g Repeat steps c f if you have several V5 2 User Port configuration files h Click OK The files are uploaded to th...

Страница 301: ...een will include the following Number of lines added Number of lines removed Number of lines duplicate Number of lines that don t exist c If the configuration file download fails the summary screen wi...

Страница 302: ...Installation Operation Manual 302 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 303: ...Security for OAM management interfaces Secure Operation Mode Secure access to the SNMP interface via SNMPv3 and or SNMPv2 IPSEC Secure access to the CLI interface via SSH and SFTP SCP Disabled Remote...

Страница 304: ...igure 33 1 Security Features Each security feature addresses a specific threat For example SNMPv3 protects the management interface and SRTP provides security for the media traffic To enable proper Me...

Страница 305: ...ting the call control traffic and implementing the appropriate security measurements and network level e g by using firewalls See Configuring IPSEC IKE for Call Control and Signaling Interfaces on TP...

Страница 306: ...on the SC Rev 2 boards using the Linux OS For SC Rev 1 boards using the Solaris OS use the procedures described in the following sections to enable disable Secure Operation mode Note The Secure Mode i...

Страница 307: ...ore information see Section Logging in as a Root User on page 115 3 To stop Media Gateway software on both SC boards on each SC board at the prompt type tools sc dn and press Enter When prompted to co...

Страница 308: ...the following SNMP operational modes SNMPv2 a simple default management mode widely deployed in many closed networks has a relatively weak security model based on the plain text read and write commun...

Страница 309: ...connection type for the CLI management interface 33 4 2 SCP and SFTP Protocols Secure Copy SCP and Secure FTP SFTP are associated protocols that support files transfer over SSH connections They are us...

Страница 310: ...nformation see Section Logging in as a Root User on page 115 3 At the prompt type tools user and press Enter 4 At the Choose submenu prompt type remote_root_login and press Enter client238 tools user...

Страница 311: ...Remote Root Login on page 310 however at the Enable Disable Remote root Login prompt type disable and press Enter 33 6 OS Hardening The Mediant 8000 software automatically performs hardening of the Op...

Страница 312: ...urity patches are considered to be part of theMediant 8000 software and therefore are typically deployed via the regular software installation and or upgrade procedures Use of the matching versions of...

Страница 313: ...o the SC Boards on page 130 The package will be transferred to the home directory of the logged in CLI user e g acladmin 3 Connect to the CLI interface on the Standby SC board For more information see...

Страница 314: ...e use the following commands to start the Mediant 8000 software installation rm f os_patch chmod u x acladmin tg_6 6 32 install acladmin tg_6 6 32 install os_patch 7 When you are prompted if you wish...

Страница 315: ...undle The OS security patch bundle is a special installation package that contains only the latest OS security patches without the core Mediant 8000 software and is provided on customer request Instal...

Страница 316: ...th binary and configuration files Media Gateway software periodically scans file system and compares it against the snapshot When unauthorized modifications are detected a notification alarm is sent t...

Страница 317: ...to the file system are detected the File System Integrity Status attribute of the corresponding SC board is changed to failure and the Integrity Unauthorized Files attribute is updated with the list o...

Страница 318: ...rformed on a daily basis By default the check is run at 2 00 AM however a user may modify this time to match the period when the amount of the traffic being served by the Media Gateway is low To set t...

Страница 319: ...ied from the uncompromised SC board After completing either of these options you must acknowledge the file deletion by providing the directory name to the tools fs ack command see below When modified...

Страница 320: ...tions to detect malicious intent The problem is to determine which events generate plausible information and which events generate negligible information that are so common that they clutter the audit...

Страница 321: ...board contains its own audit trail data 33 9 3 1 Analyzing the Audit Trail File on the Solaris OS The following basic tools provided by the Solaris OS may be used to analyze the audit trail files on S...

Страница 322: ...neration of a complete audit summary report as shown above may take a few minutes To speed up the report generation process use ts and te options as described below to generate report for a specific p...

Страница 323: ...from one application s system call have the same event ID As one application s system call may trigger several events to be logged you are likely to retrieve more than one record from the log ausearc...

Страница 324: ...root euid root suid root fsuid root egid root sgid root fsgid root tty pts5 ses 1041 comm chmod exe bin chmod key null type PATH msg audit 08 09 2009 16 24 35 019 202009 item 0 name etc audit audit ru...

Страница 325: ...ation and the public key belong together CAs are organized in a structured hierarchical system that represents the trust relationships between them Each party has a list of Trusted Root Certificates c...

Страница 326: ...stallation of the Media Gateway software the Private Key and Self Signed Certificate files are automatically generated added to the Auxiliary Files repository and configured in the Media Gateway secur...

Страница 327: ...raged You should instead establish PKI infrastructure and use certificates signed by the genuine CAs Refer to the sections described below for detailed instructions When Self Signed Certificates are u...

Страница 328: ...o be used for generating the Self Signed Certificate 6 In the Self Signed Certificate field enter a name of the new Self Signed Certificate file 7 Click OK A new self signed certificate file is genera...

Страница 329: ...digitally signed with the Private Key of the Certificate Authority This certificate file together with the certificate of the CA itself must be added to the Media Gateway Auxiliary Files repository an...

Страница 330: ...ialog is displayed 4 Select the CSR button 5 Select a Private Key to apply to the Certificate Signing Request 6 In the Subject field enter a brief description of the Certificate Signing Request 7 Clic...

Страница 331: ...ee Section the section Auxiliary Files Repository on page 422 33 10 5 Activating the new X 509 Certificates on the Media Gateway Once certificate files are added to the Auxiliary Files repository take...

Страница 332: ...d by the CA or by the entity itself CA Certificate File String Instant X 509 Certificate of the CA that issued the Certificate File This optional parameter is used to validate the Certificate file 1 s...

Страница 333: ...party certificate matches one of the Trusted Roots remote party certificate is accepted When new X 509 certificates are configured for the Media Gateway they are not immediately applied to the Media G...

Страница 334: ...o the VoP Boards Synchronized with the Media Gateway Configuration list After you complete configuration of the new X 509 Files in the Media Gateway Security Settings tab all Media Gateway boards are...

Страница 335: ...edia Gateway boards Select Board apply new X 509 configuration to the specific Media Gateway board if you select this option choose the specific board from the drop down list Figure 33 3 Activating X...

Страница 336: ...everity is issued When you see this alarm contact CA immediately for a new identity certificate When the certificate actually expires an alarm with error severity is issued You may configure the amoun...

Страница 337: ...ayed 3 Click the Maintenance Actions in the top right corner and select the Generate X 509 Files option The Generate X 509 Files dialog is displayed 4 Select Private Key 5 In the Private Key field ent...

Страница 338: ...ion status of X 509 certificates To configure this functionality use the following parameters located in the OCSP Settings tab of the Media Gateway Security Settings screen Table 33 5 OCSP Server Sett...

Страница 339: ...n IPSEC supports the following two modes of operation Transport mode used for host to host communication e g for communication between the Media Gateway and the EMS server encrypts the payload of the...

Страница 340: ...able on SC Rev 2 Linux OS based boards only 33 11 2 For Call Control and Signaling Interfaces on TP boards This section describes the Call Control and Signaling Interfaces on TP boards 33 11 2 1 IKE P...

Страница 341: ...esents an IKE proposal a set of encryption and authentication protocols used for specific SC IPSEC Rule up to 4 proposals may be configured for each rule When IPSEC IKE associations are configured for...

Страница 342: ...SC IPSEC Rules Settings screen is displayed 5 Configure the SC IPSEC Rule parameters according to the table below Table 33 7 SC IPSEC Rule Parameters SC Boards Parameter Name Type Provisioning Type D...

Страница 343: ...n SC Rev 2 Linux OS based boards only Preshared Key String Up to 100 chars Online Defines the Pre Shared Key in ASCII format Applicable for Preshared Key authentication mode only Once provisioned the...

Страница 344: ...T T is negotiated When NAT T is in charge all ESP and AH packets of a given connection are encapsulated into UDP datagrams port 4500 by default On NAT T is used when a NAT gateway is detected between...

Страница 345: ...on SC Rev 2 Linux OS based boards only Encryption Enum DES 3DES AES Online Defines the encryption algorithm for IPSEC and IKE SAs AES encryption algorithm is supported on SC Rev 2 Linux OS based boar...

Страница 346: ...posals is used by all TP IPSEC Rules To add and configure TP IPSEC Profile 1 Click to access the Media Gateway status screen 2 In the Navigation pane select Security TP IPSEC Profiles the TP IPSEC Pro...

Страница 347: ...vice Applicable for Tunnel mode only Remote Subnet Prefix Length Integer 0 128 Online Defines the prefix length of the Remote Subnet IP Address Applicable for Tunnel mode only Local Port Integer 0 655...

Страница 348: ...E Proposal Settings screen is displayed 5 Configure the TP IKE Proposal parameters according to the table below Table 33 11 TP IKE Proposal Parameters Parameter Name Type Provisioning Type Description...

Страница 349: ...Mediant 8000 Supported transports SSL 2 0 SSL 3 0 TLS 1 0 Supported ciphers DES RC4 compatible Authentication X 509 certificates To enable SIP over SSL TLS for a specific Media Gateway board 1 Click...

Страница 350: ...y is enabled by default when TGCP call control is configured by setting Call Control Compatibility Profile to 32 in the Media Gateway Controller configuration screen and DSP Load File Version to 3 in...

Страница 351: ...splayed 8 Set the DSP Template Number parameter to 0 7 or 9 Table 33 12 Media Gateway Board s Media Security SRTP Settings Parameter Name Type Provisioning Type Description Enable Media Security Enum...

Страница 352: ...ssage authentication with a 80 bit tag 2 AES_CM_128_HMAC_ SHA1_32 device uses AES CM encryption with a 128 bit key and HMAC SHA1 message authentication with a 32 bit tag 4 ARIA_128_HMAC_SHA 1_32 devic...

Страница 353: ...nd an action is performed a packet is dropped or accepted By default each Firewall Profile contains the following rules Default rules that allow communication with SC board and Redundant Media Gateway...

Страница 354: ...iate the Firewall Profiles with a specific Media Gateway board 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 In the Actions bar click Lock to stop the se...

Страница 355: ...e incoming IP packet The parameters Source IP and NetMask provide the mechanism for filtering packets from a specific network host or network segment subnet Net Mask String Up to 20 chars Instant Defi...

Страница 356: ...5535 Instant Defines the maximum packet size of incoming traffic Default value 0 implies any size Byte Rate Integer 0 2147483647 Instant Defines the maximum byte rate of incoming traffic Default value...

Страница 357: ...pment e g Firewalls accordingly Table 33 14 Network Services Service Name IP Address and Port Description SSH Port 22 Global and private IP addresses of SC boards Used for accessing Mediant 8000 Comma...

Страница 358: ...to the same password as that of the root user WARNING The EEPROM password should be used with caution It may not be changed reset from the OpenBoot PROM level Therefore if a user forgets the EEPROM p...

Страница 359: ...orget the trailing equal sign 4 At the New Password prompt type the new password and retype it at the Re enter password prompt client238 eeprom security password Changing PROM password New password pa...

Страница 360: ...e SC board For more information see Section The Command Line Interface CLI on page 107 2 Login as root user For more information see Section Logging in as a Root User on page 115 3 At the prompt type...

Страница 361: ...LI interface on both SC boards See Synchronizing the CLI Users Database with the EMS Server on page 367 Local CLI Users Database Synchronized with the EMS server information is stored locally on SC bo...

Страница 362: ...ment e g RADIUS server The root user may not be deleted and its password will never expire The root user s password should be changed under the following circumstances During the Mediant 8000 software...

Страница 363: ...At the Choose submenu prompt type pwd and press Enter Choose submenu pwd CHANGE USER PASSWORD 5 At the User Name prompt type root and press Enter User Name root 6 At the New Password prompt type the...

Страница 364: ...ting to the CLI via an RS 232 Serial Console on page 109 2 Drop SC board to the OBP level ok prompt by pressing the following 3 key sequence ENTER Ctrl B The keys must be pressed one after another The...

Страница 365: ...ing the Media Gateway in a production environment 33 18 3 1 Changing the Password of the EMS User The password of the ems user on the Media Gateway should be changed periodically for enhanced security...

Страница 366: ...Password prompt type the new password again Re enter new Password The new password is configured on the Active SC board and immediately replicated to the Standby SC board Therefore there is no need to...

Страница 367: ...ctivity between the Media Gateway and the EMS server e g in case of a network failure Figure 33 5 Synchronizing CLI Users Database with EMS Server 33 18 4 1 Synchronization Modes When the CLI Users Da...

Страница 368: ...LI USERS WITH EMS menu appears SYNCHRONIZE CLI USERS WITH EMS enable_block ENABLE BLOCK MODE Synchronize CLI and EMS users databases Block access to CLI for users with expired credentials enable_7days...

Страница 369: ...r on page 367 for details Also ensure that external user authentication is disabled see chapter Centralized RADIUS Servers on page 384 Figure 33 6 Local CLI Users Database on SC Boards When the Media...

Страница 370: ...pt type tools user and press Enter The CLI USERS MANAGEMENT menu appears client238 tools user CLI USERS MANAGEMENT list LIST list CLI users add ADD add user del DELETE delete user pwd PASSWORD change...

Страница 371: ...ng the password change time interval type 0 Prevent too often password changes 0 no number of days 1 Note For improved security it is strongly recommended to limit password changes to not more than 1...

Страница 372: ...er CLI USERS MANAGEMENT list LIST list CLI users add ADD add user del DELETE delete user pwd PASSWORD change user password copy COPY copy users passwords from other SC lock LOCK lock user unlock UNLOC...

Страница 373: ...CLI users database is always replicated from Active SC board to the Standby SC board Therefore ensure that you change CLI user s password on Active SC board only To change the password of a CLI user...

Страница 374: ...hanges prompt type the minimum interval between password changes number of days For not limiting the password change time interval type 0 Prevent too often password changes 0 no number of days 1 Note...

Страница 375: ...ation interfaces and not via the tools user or passwd CLI commands 33 18 6 1 Centralized TACACS Servers Terminal Access Controller Access Control System Plus TACACS is a AAA protocol developed by Cisc...

Страница 376: ...interfaces and su command Authorization for all Media Gateway specific CLI commands e g show tpCmd tools Accounting for all user activity on the Media Gateway CLI interface i e both for Media Gateway...

Страница 377: ...o supports the interworking with TACACS servers See the LTRT XXXX EMS User Manual for detailed information Figure 33 7 Working with Centralized TACACS Servers 33 18 6 1 2 Working With TACACS Server Us...

Страница 378: ...in the Mediant 8000 CLI interface Authorization and Accounting requests are sent towards the TACACS server Authorization Request is sent for all Media Gateway specific CLI commands e g show or tpCmd h...

Страница 379: ...server may do so by configuring the parameter Skip AAA Validation For Special Users to Disabled as described in the following sections 33 18 6 1 5 Configuring Media Gateway to Work With TACACS Server...

Страница 380: ...user authentication TACACS centralized TACACS servers are used for CLI user authentication authorization and accounting Table 33 16 AAA Server Settings Parameter Name Type Provisioning Type Descriptio...

Страница 381: ...y active TACACS server prior to falling back to the redundant server Note that the actual failed server detection time is typically much lower e g failure in TCP IP connection establishment typically...

Страница 382: ...ork outage 33 18 6 1 6 Sample TACACS Server Configuration Use the following sample TACACS server configuration file as a reference when deploying the Mediant 8000 in your network environment The file...

Страница 383: ...vl 15 user ems CLI administrator privilege level permit all commands user ems default service permit pap cleartext pass_1234 service exec priv lvl 1 user john CLI administrator privilege level permit...

Страница 384: ...rview The Mediant 8000 implements the authentication and authorization parts of the RADIUS protocol as defined in RFC 2865 Authorization is implemented using Audiocodes vendor specific attributes VSAs...

Страница 385: ...not on the RADIUS servers thus additionally simplifying Mediant 8000 emergency maintenance EMS management application also supports user authentication using centralized RADIUS servers Its implementa...

Страница 386: ...level 1 15 administrator level 33 18 6 2 3 Configuring the Media Gateway to Work With RADIUS Servers This section describes how to configure the Media Gateway to Work With RADIUS servers To configure...

Страница 387: ...eout in seconds between RADIUS requests retransmissions RADIUS Auth Number Of Retries Integer 1 100 Instant Defines the number of retransmission attempts for each RADIUS server AAA Active Server Integ...

Страница 388: ...ts configuration file client 10 7 9 231 secret 1234567890 shortname M8K_SC1 client 10 7 9 232 secret 1234567890 shortname M8K_SC2 dictionary AudioCodes VSA dictionary VENDOR AudioCodes 5003 ATTRIBUTE...

Страница 389: ...ction configure the CLI Interface Access Control parameters according to the table below Table 33 19 CLI Interface Access Control Parameters Parameter Name Type Provisioning Type Description CLI Acces...

Страница 390: ...ey for authentication RSA keys are generally considered to be stronger than DSA keys Therefore if your SSH client application supports both authentication mechanisms it is recommended to generate RSA...

Страница 391: ...ompt For an empty passphrase press Enter Enter passphrase empty for no passphrase Enter same passphrase again 5 Finally ssh keygen will confirm the completion and creation of the private public key fi...

Страница 392: ...ser Authorization implies that the SSH client that uses the private key will be granted credentials and access permission of the specific CLI user To transfer the generated public key file to the Acti...

Страница 393: ...d to the Active SC board and press Enter Enter public key filename id_rsa pub id_rsa pub 6 The public key will be parsed and keys from it will be added to the authorized keys list You will be informed...

Страница 394: ...procedures do not work refer to your SSH client documentation If you use standard Linux UNIX command line SSH client software 1 Log in to your client machine with the same credentials username passwo...

Страница 395: ...eration Manual 33 Configuring Security Settings 3 In Connection Data specify the CLI user name for auto login Figure 33 13 PuTTY Configuration Auto login 4 In Session enter Global IP address choose SS...

Страница 396: ...user Note however that there are some limitations to this approach Passwords may not be disabled for root and ems users who are utilized by the EMS server Passwords may be disabled only when the Sync...

Страница 397: ...ter Choose submenu disable DISABLE CLI USER 5 At the User Name prompt enter the name of the user who you wish to disable and press Enter User Name acladmin The password is deleted for the specified us...

Страница 398: ...cted In certain environments an Intrusion Detection Event may be issued for normal activity e g there may be some automated network scanner that periodically tries to access the Media Gateway with inc...

Страница 399: ...Frozen Media Gateway includes the following indication at the top of the status screen in the EMS To freeze Media Gateway configuration 1 Click to access the Media Gateway status screen 2 In the Navig...

Страница 400: ...Installation Operation Manual 400 Document LTRT 92224 Mediant 8000 This page is left intentionally blank...

Страница 401: ...generated it can be applied to the Media Gateway and then polling can be activated on this entity 34 2 Real Time PMs Real time PMs are polled at a high rate typically every 5 seconds and are used to...

Страница 402: ...When polling is activated via this screen only History statistics are collected To generate Performance Monitoring Profiles 1 Click to access the Media Gateway status screen 2 Select the relevant Med...

Страница 403: ...Group are displayed in the right pane 6 In the Parameters List right click the Parameter group and check all parameters for the group or individually check the desired parameters from the selected Par...

Страница 404: ...parameter Trunk Utilization Avg it will be collected for all trunks on all Media Gateway boards 11 When you have completed performance monitoring click the Stop Polling button to stop parameter s pol...

Страница 405: ...formance Measurements 1 Click to access the Media Gateway status screen 2 Select the relevant Media Gateway entity for which you wish to display Real Time PMs For example select the Media Gateway boar...

Страница 406: ...me Performance Measurement Display window is displayed Note if you selected more than one entry in an MO s list all of the selected entries are displayed in the Components pane Figure 34 5 Real Time P...

Страница 407: ...and Counters 7 Select the parameters group for which you wish to display performance measurements e g MG IP All parameters for the selected Parameter Group are displayed 8 Check the desired parameters...

Страница 408: ...to save the graph as an image by clicking the Save button in the left pane Historical data of the selected components and parameters can be viewed by clicking the History button and then defining the...

Страница 409: ...ements you must define a PM profile For more information see Performance Monitoring Profiles on page 402 To view collected History Performance Measurements 1 Click to access the Media Gateway status s...

Страница 410: ...one entry in an MO s list all of the selected entries are displayed in the Components pane Figure 34 8 History Performance Measurements Display 5 Click the button and select the components and parame...

Страница 411: ...splays the summarized data Figure 34 9 History Performance Measurements Display Results Screen Each time a sample is taken from the Media Gateway it is stored in the details table After every 24 hours...

Страница 412: ...sion critical performance measurement and receive immediate indication when a specific problem indicated by a change in corresponding PM value occurs To configure PM Threshold Alarms 1 Click to access...

Страница 413: ...Threshold MO Enum Online Defines the MO to which the threshold is applied MG threshold is applied to all PM instances e g in case of a History PM parameter on Media GatewayMedia Gateway boards thresh...

Страница 414: ...e Defines the low threshold value When the PM value drops below the low threshold the corresponding Threshold Alarm is cleared Alarm Severity Enum Warning Minor Major Critical Online Defines the sever...

Страница 415: ...e components of the Media Gateway and their relevant data including serial numbers hardware and EEPROM versions and board IP addresses To view Media Gateway Inventory 1 Click to access the Media Gatew...

Страница 416: ...Installation Operation Manual 416 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 417: ...Media Gateway Board s Configuration Backdoor you must receive the following information from AudioCodes Tech Support The parameter s ini file name The parameter s ini file value The parameter s ini fi...

Страница 418: ...nd numbers e g 5 6 8 10 for slots 5 5 7 8 and 10 Value all to define the value for all boards Trunks IDs String Up to 40 chars Online Defines Trunks to which this backdoor parameter is applied Syntax...

Страница 419: ...levant Media Gateway boards as soon as the Configuration Backdoor is unlocked TPReset backdoor requires the Media Gateway board to be reset lock unlock The reset in not automatically enforced and shou...

Страница 420: ...or parameter affects more than one board a deleted board is removed from the Board IDs attribute s range except when the value range is defined as all Lock prepare the BackdoorConfiguration for remova...

Страница 421: ...Defined Tones to be detected generated by the Media Gateway board Yes Pre Recorded Tones PRT Provides more flexible tone generation capability than the CPT mechanisms which have limitations such as l...

Страница 422: ...ype a meaningful description f Do the same for any additional file type you require g Click OK the files are uploaded to the EMS 37 2 Call Progress Tones CPT Files Call Progress Tones CPT files contai...

Страница 423: ...e Setup Files tab 5 In the Setup Files tab configure Call Progress Setup File parameter to match the desired CPT file 37 2 1 Modifying the Source Call Progress Tones CPT File This section describes sy...

Страница 424: ...rameter defines the tone On event detection time When a tone is configured to be burst tone it defines the tone s duration First Signal Off Time 10 msec The Signal Off period in 10 msec units for the...

Страница 425: ...e frequency should differ by at least 40 Hz from one tone to other defined tones 37 2 1 2 The User Defined Tones Section Format In the source Call Progress Tones file the User Defined Tones section st...

Страница 426: ...Number of Call Progress Tones 9 Dial tone CALL PROGRESS TONE 0 Tone Type 1 Tone Form 1 Continuous Low Freq Hz 350 High Freq Hz 440 Low Freq Level dBm 13 13dBm High Freq Level dBm 13 First Signal On T...

Страница 427: ...f Time 10msec 50 Busy CALL PROGRESS TONE 5 Tone Type 3 Tone Form 2 Cadence Low Freq Hz 440 High Freq Hz 0 Low Freq Level dBm 20 20dBm High Freq Level dBm 0 First Signal On Time 10msec 50 First Signal...

Страница 428: ...e provided on the Media Gateway software installation CD as a reference Modify the section according to your specific needs For example to change the dial tone to 440 Hz only replace the Dial tone sec...

Страница 429: ...nd path of both the CPT ini file and the dat file appear in the Using File field and Output File field respectively The file names and paths are identical except for the file extension 4 Fill in the V...

Страница 430: ...allows recording only part of the tone while still playing it for the full duration For example if a tone has a cadence of 2 seconds on and 4 seconds off the recorded file should contain only the 6 se...

Страница 431: ...g the DConvert utility provided on the Media Gateway Software Installation CD To create Pre Recorded Tones file 1 Execute DConvert exe and click the Process Prerecorded Tones file s button the Prereco...

Страница 432: ...e file or group of files to be set the same and double click or right Click it the File Date window is displayed Figure 37 3 File Data Dialog Box 4 From the Type drop down list select a Ring parameter...

Страница 433: ...ndicates that the process is completed 37 4 Voice Prompts Files The Voice Prompts file contains definitions of the Voice Prompts played by the Media Gateway board upon MGC request Individual Voice Pro...

Страница 434: ...one of these actions a Click the Add Files button in the upper right corner The Add Files window appears See the figure Select Files Window below Navigate to the appropriate file Select it and click...

Страница 435: ...w with wav Files b From any location on the PC select the appropriate files and drag drop them into the Voice Prompts window 3 Arrange the files as desired by dragging and dropping them from one locat...

Страница 436: ...selected from the wav file header 8 Close the File Data dialog by clicking on the Exit button Press the Esc key to cancel changes You are returned to the Voice Prompts window 9 The default Output file...

Страница 437: ...eway to access the Media Gateway status screen 5 Select the desired Media Gateway board 6 In the Navigation pane select PSTN and in the Configuration pane click PSTN Settings The PSTN Settings screen...

Страница 438: ...e or in the transition from one state to another The available functions include for example SET_TIMER timer number timeout in ms and SEND_CAS AB value CD value A full list of the possible pre defined...

Страница 439: ...t is processed by declaring end of digit reception in the following ways both for ADDRESS destination number and ANI source number Receiving digit in MF or DTMF The number of digits collected reaches...

Страница 440: ...5 1 5 Reserved Words For reserved words such as DO NO_STATE refer to the CASSetup h file 37 5 1 6 State s Line Structure Each text line in the body of each state is composed of six columns Action Even...

Страница 441: ...od Timer Oriented EV_TIMER_EXPIRED1 timer 1 that was previously set by table has expired EV_TIMER_EXPIRED2 timer 2 that was previously set by table has expired EV_TIMER_EXPIRED3 timer 3 that was previ...

Страница 442: ...ed EV_MFRn_3_ STOPPED MF digit 3 previously detected is now stopped EV_MFRn_4_ STOPPED MF digit 4 previously detected is now stopped EV_MFRn_5_ STOPPED MF digit 5 previously detected is now stopped EV...

Страница 443: ...IALED_NUM_DETECTED Incoming call dialed destination number is collected after START_COLLECT was previously activated and the condition for incoming_call_detected event is satisfied see ST_INIT for con...

Страница 444: ...ation number is reported in the EV_INCOMING_CALL_DETECTED event STOP_COLLECT See START_COLLECT SET_COUNTER counter number counter value or NONE Set counters that are managed per B channel and their ex...

Страница 445: ...n be taken from CASsetup h Stops sending the last parameter CHANGE_COLLECT_TYPE Collect Type Used only in MFCR2 protocol by the incoming user to indicate his waiting for the reception of the MF digit...

Страница 446: ...locking unblocking a channel EV_MAKE_METERING_PULSE When starting the metering pulse while using the SET_PULSE_TIMER function to start the timer to get the Off event refer to the EV_METERING_TIMER_PUL...

Страница 447: ...ed MFCR2 protocol related EV_MFRn_1 MF digit 1 is detected EV_MFRn_2 MF digit 2 is detected EV_MFRn_3 MF digit 3 is detected EV_MFRn_4 MF digit 4 is detected EV_MFRn_5 MF digit 5 is detected EV_MFRn_6...

Страница 448: ...ed by the outgoing user MFCR2 protocols specifications should define what to do when no ANI digits are available Usually I 12 is sent Note MF digit is MF R1 or R2 FWD or R2 BWD according to the contex...

Страница 449: ...ers the state machine table Each protocol table state machine can use up to 8 timers per B channel call timeout in msec SEND_CAS AB value CD value ABCD bits are sent as line signaling for the specific...

Страница 450: ...lity parameter when a call is placed The second and third parameters have no use when using this type Index Specifies the Offset of the next digit to be sent from the vector ADDRESS or ANI types descr...

Страница 451: ...nd waits for another action to come Reserved word DO must be written in the next state field if the unconditional actions FUNCTION0 at the beginning of the state are used 37 5 2 Converting CAS File to...

Страница 452: ...the Table Name if desired 8 For troubleshooting purposes you can click a check into the Output state names to file checkbox This activates the file name field in which the default file name TableState...

Страница 453: ...his section describes syntax of the text based source External Coders file This file must be converted to the binary format via the DConvert utility prior to uploading it to the Media Gateway The foll...

Страница 454: ...ccording to RFC 3558 of a existing coder It was formerly called EVRC BV16 Supported for BCT only iLBC Supported for BCT only 37 6 1 2 Coders Support Level The application defines the following support...

Страница 455: ...e Make File button A Browse window appears 3 Navigate to the desired location and select the file to be converted This automatically designates the output file as the same name and path but with the d...

Страница 456: ...in which many different routing rules are required For example a city may have many different area codes some for local calls and others for long distance calls e g 425 202 xxxx for local calls howev...

Страница 457: ...signed to a long distance Trunk Group 2 3 Configure phone number manipulation for local and long distance calls In this example you set two manipulation rules one for local calls and another for long...

Страница 458: ...Installation Operation Manual 458 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 459: ...o access the Media Gateway status screen 2 Select the specific Media Gateway board 3 In the Navigation pane select PSTN and then in the configuration pane click PSTN Settings the PSTN Settings screen...

Страница 460: ...nfiguring STM 1 OC 3 Interfaces Two redundant optical STM 1 OC 3 interfaces featuring automated protection switching APS are provided on each TP 6310 Media Gateway board for connecting to the SDH SONE...

Страница 461: ...Figure 38 2 STM 1 PSTN Fiber Group Status Screen Figure 38 3 OC 3 PSTN Fiber Group Status Screen To configure the PSTN Fiber Group on a specific Media Gateway board 1 Access the TP 6310 Board Interfa...

Страница 462: ...or non revertive behavior of the APS protection mode In revertive mode when failed Link A returns to service activity is automatically switched back to it In non revertive mode the activity remains o...

Страница 463: ...a Gateway board 1 Click to access the Media Gateway status screen 2 Select the specific Media Gateway board 3 In the Navigation pane select PSTN DS3 the DS3 Status screen is displayed Figure 38 4 DS3...

Страница 464: ...ts for DS3 interface 38 3 1 Channelized T3 In channelized T3 configuration T3 interfaces are carried inside the OC 3 SONET optical links Up to three T3 trunks can be channelized To configure channeliz...

Страница 465: ...ocated at the back of the Mediant 8000 chassis For additional details see TP 8410 Media Gateway Board on page 52 For TP 6310 Media Gateway s E1 T1 trunks are confined inside the STM 1 OC3 optical link...

Страница 466: ...d on the E1 T1 Trunk and are available in EMS when you right click the specific trunk in the E1 T1 Trunks Status screen Lock take the trunk out of service and allow modification of its configuration a...

Страница 467: ...described in Connecting to the PSTN Network on page 122 Change the configuration of the E1 T1 trunks to match the configuration on the remote PSTN side and unlock all the E1 T1 trunks that are actual...

Страница 468: ...T1 Raw CAS T1 Transparent E1 Transparent 31 E1 Transparent 30 E1 MFC R2 E1 CAS R2 E1 Raw CAS T1 NI2 ISDN T1 4ESS ISDN T1 5ESS 9 ISDN T1 5ESS 10 ISDN T1 DMS100 ISDN J1 Transparent T1 NTT ISDN E1 Austel...

Страница 469: ...g F72 T1 Framing ESF CRC6 JT Online Defines the trunk s framing method that should match the chosen Protocol Type Trace Level Type Enum Line Build Out Loss Enum 0 db 7 5 db 15 db 22 5 db Instant Defin...

Страница 470: ...e 38 6 Trunk Channels Status Screen Each row in the Trunk Channels Status screen consists of the following elements Trunk number Icon that represents the operational status of each trunk Trunk name Tr...

Страница 471: ...Color Disabled Grey Active Green RAI Yellow AIS Blue D Channel Alarm Orange LOS LOF Red Each trunk channel is represented by an icon that is color coded according to the channel status and configurati...

Страница 472: ...ements over bidirectional channels called signaling data links Signaling occurs out of band on dedicated channels rather than in band on voice channels Each signaling point node in the SS7 network is...

Страница 473: ...ignaling messages such as ISUP and SCCP messages between SG and MGC 38 6 2 Supported SS7 Architectures The SS7 subsystem may be configured to support different SS7 network architectures This flexibili...

Страница 474: ...per Media Gateway board 38 6 2 2 SS7 MTP3 M3UA Architecture The Mediant 8000 is physically connected to the SS7 network It processes MTP3 payload and sends upper application layers to the SoftSwitch...

Страница 475: ...3 SS7 M2TN Tunneling Architecture M2TN tunneling is used for transferring MTP2 signaling link over IP network while both sides of the link are pure TDM sources which are unaware of the IP tandem that...

Страница 476: ...N network a Click to access the Media Gateway status screen b Select the desired Media Gateway board c In the Navigation pane select PSTN SS7 SS7 Data Links the SS7 Data Links list is displayed d Use...

Страница 477: ...ay Status screen b Select the specific Media Gateway board c If the Media Gateway board is not already unlocked unlock it by clicking Unlock in the Actions bar Wait until the board completes the resta...

Страница 478: ...GC side application define the Layer 2 type as M2UA For the broadband SS7 UMTS application define the Layer 2 type as SAAL Layer 2 Variant Enum Itu Ansi Online Defines the national variant of the Laye...

Страница 479: ...levant for Layer2Type MTP2 only Defines the ID of the MTP2Profile that contains timers and basic MTP2 layer configuration for specific SS7 Data Link Multiple SS7 Data Links may use the same MTP2 Profi...

Страница 480: ...te side configuration typically the remote side is configured as an MGC and therefore UAL Group is configured as SG UAL Type Enum Iua M2ua M3ua M2tn Dua Online Defines the application type of UAL Grou...

Страница 481: ...ne Relevant for UALType M3UA only Defines the national M3UA variant It must match configuration on the remote IP side Table 38 10 UAL Interface Properties Parameter Name Type Provisioning Type Descrip...

Страница 482: ...eate provisioning type To modify them either lock the Media Gateway board or delete the SS7 Data Link and define a new one The M2UA entities in the UALInterface and SS7DataLink tables are linked one t...

Страница 483: ...d Enum Basic 0 PCRC 1 Online Defines the error correction method Basic or Preventive Cyclic Retransmission Refer to ITU T Q 703 for details SUERM Threshold T Integer 0 255 Online Defines the Signal Un...

Страница 484: ...imer T3 Refer to ITU T Q 703 for details Normal Proving Period T4n Integer 0 15000 Online Defines the Normal Proving Period T4n Refer to ITU T Q 703 for details Emergency Proving Period T4e Integer 0...

Страница 485: ...UA messages based on their source point code and service indicator For example you may define that all M3UA messages from OPC 0xA will be routed to ASP 1 while messages from OPC 0xB will be routed to...

Страница 486: ...n is displayed b In the SS7 Settings tab configure MTP3 Group parameter to match the the specific MTP3 Group as configured in the step 2 See Media Gateway Board s MTP3 M3UA Properties 5 Create a new S...

Страница 487: ...S7 Linkset only a In the Navigation pane select the SS7 Linkset configured in step 7 b In the Navigation pane select the SS7 Linkset Links the SS7 Linkset Links list is displayed c Use the or buttons...

Страница 488: ...s a Click to access the Media Gateway Status screen b Select the desired Media Gateway board c In the Navigation pane select PSTN SS7 M3UA Routing Groups the M3UA Routing Group list is displayed d Use...

Страница 489: ...sive Unlock operation may fail if the configuration of some of the MTP3 entities is inconsistent If this occurs correct the configuration and repeat the operation Instead of performing the Recursive U...

Страница 490: ...ely and easily Redundancy Mode Enum none dualCpu Online Defines the Redundancy mode For a simple configuration where only one Media Gateway board is associated with the MTP3 Group define the Redundanc...

Страница 491: ...si China Offline Defines the international or national MTP3 variant Originating PC String Up to 20 chars Offline Defines the signaling point code of the SS7 Node It can be specified in numeric e g 15...

Страница 492: ...application to which the ISUP messages are transferred For example to transfer an ISUP payload to the MGC via M3UA link define this parameter as UAL If the payload specific Layer 4 App equals none th...

Страница 493: ...ts It is a pure binary number that may be stated in terms of zone 3 bits area network 8 bits and signaling point identification 3 bits numbers The China point code uses 24 bits and is incompatible wit...

Страница 494: ...can contain any value between 0 and 255 The ITU point code uses 14 bits It is a pure binary number that may be stated in terms of zone 3 bits area network 8 bits and signaling point identification 3 b...

Страница 495: ...ily identify it Half Board ID Enum TPM1 TPM2 Online Only relevant for TP 1610 boards Defines the ID of the Media Gateway board s CPU module in which the Routing Group is defined Must match the Half Bo...

Страница 496: ...and is incompatible with both ANSI and ITU networks OPC 2 String Up to 20 chars Online Defines 2 nd filter Originating Point Code MTP3 messages that originate at specific point code will be associated...

Страница 497: ...ilter is deactivated Service Indicator 4 Enum none 0 15 Online Defines the 4 th filter Service Indicator MTP3 messages that match a specific SI will be associated with this M3UA Routing Context The va...

Страница 498: ...s SS7 Node SS7 Routeset SS7 Linkset and SS7 Data Link specific maintenance operations must be performed in the following order Unlock of SS7 Linkset and Routeset is not allowed when a SS7 Node is lock...

Страница 499: ...ibuted across multiple Media Gateway boards The Signaling links can be defined on any of the Media Gateway boards that belong to the Redundant MTP3 Group Note Up to two Media Gateway boards can be att...

Страница 500: ...atch the the specific MTP3 Group 4 For each Media Gateway board that is associated with the Redundant MTP3 Group define an internal point code a Click the button to access the Media Gateway status scr...

Страница 501: ...layed f Configure SS7 Data Link properties according to the tables M2UA SS7 Data Link Properties Data Link General Info Tab and M2UA SS7 Data Link Properties Data Link MTP Tab Make sure to configure L...

Страница 502: ...o perform a regular Unlock operation on all the newly added SS7 Data Links 10 In the Navigation pane select the the newly associated Media Gateway board a If the Media Gateway board is not already unl...

Страница 503: ...configured via MTP2 Profile SS7 Node Timers and SS7 Linkset Timers By default a single instance of each profile entity is created and all MTP2 MTP3 entities are attached to it You can create addition...

Страница 504: ...ew configuration by restarting the corresponding Media Gateway board via Lock and consequent Unlock maintenance actions for redundant configurations you must lock both Media Gateway boards that are as...

Страница 505: ...e tunneling link ID 3 Crete and configure the UAL Group for the SCTP association between the Media Gateway boards a Click to access the Media Gateway status screen b Select the desired Media Gateway b...

Страница 506: ...rify that the Operational State of all of the configured entities is Enabled This occurs only when the Media Gateway boards on both sides of the tunnel are enabled and their configurations fully match...

Страница 507: ...nel D channel handles signaling at 16 kb s or 64 kb s depending on the service type The Mediant 8000 supports ISDN interworking function where signaling messages coming from the ISDN trunk are relayed...

Страница 508: ...e Provisioning Type Description Q 931 Relay Mode Enum None Activate LAPD Messaging Q931 Relay To Host Layer 3 Is IUA Online Defines whether Q 931 relay mode is activated or not Q 931 relay is a new wa...

Страница 509: ...nd then in the configuration pane click Trunk Settings the Trunk Settings screen is displayed 5 In the ISDN DPNSS and CAS tabs configure parameters according to the tables below Table 38 23 E1 T1 Trun...

Страница 510: ...CCEPT A LAW RESTART INDICATION FORCED RESTART NS_ACCEPT_ANY_CAUSE ISDN Outgoing Calls Behavior Unsigned 0 4294967295 Online Defines ISDN Q 931 state machine behaviour for outgoing calls via a bitmap t...

Страница 511: ...PRI USE E1 PRI START WITH B CHAN OOS CHAN ALLOC LOWEST CHAN ALLOC HIGHEST DPNSS Behavior Integer 0 2147483647 Online Defines ISDN Q 931 state machine behaviour via a bitmap that contains the following...

Страница 512: ...guration CAS Setup Files CAS Delimiter Padding Enum Number Sign Asterisk Online Defines the digits string delimiter padding usage per trunk Number Sign default address string padding XXX where XXX is...

Страница 513: ...e Change the Protocol Type parameter as follows For IUA application configure Trunk s Protocol Type as T1IUA or E1IUA For DUA application configure Trunk s Protocol Type as E1DUA f In the IDSN DPNSS t...

Страница 514: ...played d In the DS1 Trunks List select a DS1 trunk and then in the configuration pane click Trunk Settings the Trunk Settings screen is displayed e In the IDSN DPNSS tab configure ISDN DPNSS trunk par...

Страница 515: ...indicates the status of the D channel for a DUA application mirrors the status of the Trunk 38 7 5 Redundant Configuration The IUA DUA application is partially supported by the Media Gateway board re...

Страница 516: ...ources connected to dual SA 1 RTMs for more information refer to Timing Module BITS Sync Clock Mode on page 519 Timing Module Line Sync mode all Media Gateway boards are synchronized by up to four ref...

Страница 517: ...quipment 38 8 1 2 Configuring the Media Gateway Software This section describes how to configure the Standalone Board Sync Clock Mode To configure the Standalone Board Sync Clock Mode 1 Click to acces...

Страница 518: ...Reference T3 E1 T1 trunks and their priorities 1 Open Media Gateway board s PSTN Settings configuration screen as described above 2 Select the Standalone Board Mode Settings tab The list of all Media...

Страница 519: ...another source and continues using it as a reference clock for the whole Media Gateway Automatic failover of the BITS Generator clock source can be disabled by configuring the Selector Mode parameter...

Страница 520: ...Module BITS Sync Clock Mode configurations 1 Click the button to access the Media Gateway status screen 2 In the Navigation pane select PSTN and then in the configuration pane click Clock Settings th...

Страница 521: ...ference Validation Time Integer Instant Defines the validation time in seconds for reference clock 5 In the TM External IF Settings tab configure parameters as described in the table TM External IF Se...

Страница 522: ...nks or E1 T1 T3 trunks connected to the specific Media Gateway boards Up to four clock reference source fiber links or trunks may be defined in the Mediant 8000 Media Gateway and one clock reference s...

Страница 523: ...ard performs switchover and takes control over the OC 3 STM 1 links or T1 E1 T3 trunks that were connected to the failed board When the Timing module fails the redundant Timing module performs switcho...

Страница 524: ...on and status parameters 6 Configure parameter for all physically connected clock reference sources as described in the table TM Line Sync Settings Parameters below 7 Right click the clock reference s...

Страница 525: ...similar to the Standalone Board Sync mode To configure timing of the DS3 interface 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 In the Navigation pane s...

Страница 526: ...Installation Operation Manual 526 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 527: ...ning Type Description Voice Volume Integer 32 31 Instant Defines the Voice Gain Control volume PCM Input Gain Integer 31 31 Instant Defines the PCM input gain RFC2833 Receive Payload Type Integer 96 1...

Страница 528: ...eter sets the level for the received PSTN to IP signal Silence Suppression Enum Disable Enable Enable Without Adaptation Instant Silence Suppression is a method for conserving bandwidth on VoIP calls...

Страница 529: ...syntax Transparent DTMF digits remain in the voice stream Relay DTMF Over RTP erase digits from the voice stream relay to remote using RFC 2833 syntax Echo Canceller Enum Disable Enable Instant Defin...

Страница 530: ...o endpoints Smart Transcoding 0 Transcoding is selected according to channels configuration If two WB coders excluding FAX are configured RTP Sync is selected Otherwise TDM Transcoding is selected Def...

Страница 531: ...nuation Intensity Integer 0 3 Instant Defines the acoustic echo suppressor signals identified as echo attenuation intensity Max ERL Threshold DB Integer 0 60 Instant Defines the acoustic echo suppress...

Страница 532: ...factor influences the error ratio Jitter Buffer Optimization Factor Integer 0 13 Instant Defines the factor for dynamic Jitter Buffer frame error delay optimization RFC2833 Receive Payload type Integ...

Страница 533: ...TCP Mean Tx Interval in milliseconds VQM Burst Threshold Integer 1 12 Online Defines excessive burst alert threshold for Voice Quality Monitoring VQM If set to 1 no alerts are issued VQM Delay Thresho...

Страница 534: ...d Format Enum RTP ATM Instant Defines the voice payload format Table 39 3 Media Gateway Board s Fax Modem Settings Parameter Name Type Provisioning Type Description Enable Fax Modem Inband Network Det...

Страница 535: ...load type Fax Relay Redundancy Depth Integer 0 2 Instant Defines the number of times that each T 38 fax relay payload is retransmitted to the network T38 Redundancy Depth Enum No Redundancy One Packet...

Страница 536: ...packets from the internal network i e originating device Events Only CNG is detected on the originating side passes transparently to the remote side and fax session is started T 38 fax session starts...

Страница 537: ...n the voice stream Relay currently not applicable Mute the caller ID signal is detected from the Tel PSTN side and then erased from the voice stream Default Caller ID Enum Bellcore 0 ETSI 1 NTT 2 Brit...

Страница 538: ...efines the time interval in which RTP or T 38 No Op packets are sent in the case of silence no RTP T 38 traffic when No Op packet transmission is enabled No Op Payload Type Integer 96 127 Instant Defi...

Страница 539: ...DSP Template 1 Click to access the Media Gateway status screen 2 In the Navigation Pane select Media DSP Templates the DSP Templates list is displayed 3 Use the or buttons to add or remove entries 4 S...

Страница 540: ...etects the significant change in voice quality it sends a special command to the other side requesting the change in the coder rate The AMR coder rate policy is defined in the 3G specification 44 318...

Страница 541: ...ined for a specific AMR Profile 5 Use the or buttons to add or remove entries 6 Select a specific row and then in the configuration pane click AMR Codec Policy Settings the AMR Policy Rule Settings sc...

Страница 542: ...MR Codec Policy enabling user to easily identify it Current Rate Integer 0 8 Read Only Indicates the current AMR Rate Current Redundancy Level Integer 0 3 Read Only Indicates the current Redundancy Le...

Страница 543: ...line Defines the new Frame Loss Ratio FLR threshold Upon successful Unlock action this value is copied to the Current Threshold parameter and applied to all related boards Hysteresis Integer 0 15 Onli...

Страница 544: ...Installation Operation Manual 544 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 545: ...g SIP applications PSTN Gateway provides gateway functionality between the PSTN and IP networks IP to IP provides IP to IP call routing functionality SBC provides Session Border Controller SBC functio...

Страница 546: ......

Страница 547: ...ess or fully qualified domain name FQDN You can define up to six Proxy Sets each with a unique ID number and each containing up to five Proxy server addresses For each Proxy server address you can def...

Страница 548: ...wap Retx 40 1 3 DNS Service Records SRV DNS Service Records SRV may be used to discover the SIP Proxy servers when their Proxy IP parameter contains a domain name See the parameter DNS Query Type in t...

Страница 549: ...tant Defines the Home Proxy Domain Name If specified the name is used as Request URI in REGISTER INVITE and other SIP messages If not specified the Proxy IP address is used instead Is Trusted Proxy En...

Страница 550: ...g table when Proxy servers are not available When the gateway falls back to the internal Tel to IP Routing table it continues scanning for a Proxy When the gateway locates an active Proxy it switches...

Страница 551: ...Table send INVITE according to Routing Table Use Routing Table when Proxy Fails Enum No Yes Instant Defines SIP messages routing rules when SIP Proxy server fails No Gateway fallback is not used Yes I...

Страница 552: ...on e g ProxyIP domain com an SRV query is performed The SRV query returns up to four Proxy host names and their weights The gateway then performs DNS A record queries for each Proxy host name accordin...

Страница 553: ...Balancing mechanism Disable disable Proxy Load Balancing RoundRobin A list of all possible Proxy IP addresses is compiled This list includes all entries in the ProxyIP table after necessary DNS resolu...

Страница 554: ...sends the requests in such a manner that each Proxy receives a percentage of the requests according to its assigned weight The Random Weights Load Balancing is not used in the following situations The...

Страница 555: ...sent every Proxy Keep Alive Time If set to UsingRegister the SIP REGISTER message is sent every Registration Time Any response from the Proxy server either success 200 OK or failure 4xx response is co...

Страница 556: ...tches back to the main Proxy whenever it is available Note to use Proxy Redundancy Mode enable keep alive with Proxy via Enable Proxy Keep Alive parameter Is Proxy Hot Swap Enum No Yes Instant Enables...

Страница 557: ...CompareOnlyIP CompareIP_Port_TransportType Instant Classifies an IP call to a Proxy Set based either on its IP address or its IP address port and transport type 0 Compare only IP IP call classified to...

Страница 558: ...on request is resent according to the parameters Re registration Timing and Registration Time For example if Re registration Timing 70 and Registration Time 3600 the Media Gateway resends its registra...

Страница 559: ...resent if registration fails with 4xx or there is no response from the Proxy Registrar Registrar Name String Up to 49 chars Instant Defines the Registrar Domain Name If specified the name is used as...

Страница 560: ...ecific endpoint account registration fails SIP 4xx or no response then this endpoint is set to out of service until a success response is received in a subsequent registration request When the registr...

Страница 561: ...requests to the Proxy are sent with credentials calculated from the saved challenge If the Proxy doesn t accept the new request and sends another challenge instead the old challenge is replaced with...

Страница 562: ...Proxy are sent with credentials calculated from the saved challenge If the Proxy doesn t accept the new request and sends another challenge instead the old challenge is replaced with the new one Authe...

Страница 563: ...ype Provisioning Type Description Transport Type Enum UDP TCP TLS Instant Defines SIP messages transport type Enable SIPS Enum Disable Enable Instant Enables secured SIP SIPS connections over multiple...

Страница 564: ...CP TLS two way authentication Enum Disable Enable Instant Defines the TLS PKI two way authentication option Disable gateway doesn t require client certificate Enable gateway when acting as a server fo...

Страница 565: ...in dotted decimal notation format defined in the Outbound IP Routing table or Proxy Set table and rejects all other incoming calls In addition if a fully qualified domain name FQDN is defined in the r...

Страница 566: ...V NAPTR Instant Enables the use of DNS Service Record SRV queries to discover Proxy servers Forking Handling Mode Enum Sequential ParallelHandling Instant Defines how the device reacts to forking of o...

Страница 567: ...ented In scenarios such as session expires SDP negotiation is irrelevant and thus the origin field is not changed Even though some SIP devices don t follow this behavior and don t increment the origin...

Страница 568: ...nt Defines the format of the URI in the P Asserted Identity and P Preferred Identity headers Disable sip Enable tel User Pho ne in URL Enum No Yes Instant Defines whether user phone string is included...

Страница 569: ...num Disable Enable Instant Enables or disables the usage of the SIP Reason header RTP Only Mode Enum Disable TransmitAndReceive Transmit Only ReceiveOnly Instant Enables the device to start sending an...

Страница 570: ...pe and Number Plan parameters are included in the Remote Party ID Header X Channel Header Enum Disable Enable Instant Defines whether X Channel header with trunk B channel information is added to the...

Страница 571: ...if an additional request is sent The order of the reasons is as follows Q 850 Reason SIP Reason SIP Response code Upon receiving the final success or failure response the gateway searches for a Redir...

Страница 572: ...ry User Header exists it is used instead of Diversion header Prefix to Redirect Number String Up to 8 chars Instant Defines a string Prefix that is added to the Redirect number which is received from...

Страница 573: ...he endpoint If the registration is per Media Gatdeway board it is only the MAC address When the User Information mechanism is used the globally unique ID is the MAC address concatenated with the phone...

Страница 574: ...ession timer updates Notes The gateway can receive session timer refreshes using both methods The UPDATE message used for session timer updates lacks the SDP body Prack Mode Enum Disabled Supported Re...

Страница 575: ...r is used for the transmission from fax machines connected to the device located inside a Network Address Translation NAT Generally the firewall blocks T 38 and other packets received from the WAN unl...

Страница 576: ...OK response to BYE using the proprietary SIP header X RTP Stat 0 Disable default 1 Enable The X RTP Stat header provides the following statistics Number of received and sent voice packets Number of re...

Страница 577: ...t SipT1Rtx 500 and SipT2Rtx 4000 The first retransmission is sent after 500 msec The second retransmission is sent after 1000 2 500 msec The third retransmission is sent after 2000 2 1000 msec The fou...

Страница 578: ...feature you must configure the Trunk Group IDs Add Trunk Id as Prefix Enum No Yes Instant Defines whether the Trunk ID is added as a prefix to the called number for Tel to IP calls If enabled the Tru...

Страница 579: ...d therefore only 100 remains Notes Applicable only if number manipulation is performed after call routing for IP to Tel calls i e IP to TEL Routiung Mode is set to Route Before Map Similar operation o...

Страница 580: ...If the timer expires the call is released Replace Calling With Redirect Number Enum Disable Enable Instant Enables replacing the calling number with the redirect number in ISDN to IP calls When such...

Страница 581: ...within two minutes Max Allowed Packet Lost Integer 0 100 Instant Defines the p acket loss percentage at which the IP connection is considered a failure Max Allowed Delay Integer 0 10000 Instant Define...

Страница 582: ...d while still in Alerting state Disable Send REFER with Replaces default Enable Send CANCEL and after a 487 response is received send REFER without Replaces Wait For Busy Time Integer 0 20000000 Insta...

Страница 583: ...placement QSIG When a SIP REFER message is received the gateway performs a transfer by sending FACILITY messages to the PBX with the necessary information on the call s legs that are to be connected T...

Страница 584: ...c the board dials the DTMF of the number referred from the Refer To header sip URI userpart If the hostpart of the Refer To sip URI contains the board s IP address and if the Trunk Group selected acco...

Страница 585: ...a redirect number Call redirection information is typically used for Unified Messaging and voice mail services to identify the recipient of a message Do Not Copy Do not copy the number Copy After Man...

Страница 586: ...rvice from PRI to SIP and vice versa Notes This feature is only supported for the QSIG and Euro ISDN PRI variants For EuroISDN it is only supported from TE user to NT network Held Timeout Sec Integer...

Страница 587: ...ing Select the lowest available channel Always start at the lowest channel number in the Trunk Group and if that channel is not available select the next higher channel Cyclic Descending Select the ne...

Страница 588: ...s not located or the channel is unavailable e g busy the device searches in ascending order for the next available channel in the Trunk Group If located the call is sent to that channel If all the cha...

Страница 589: ...the Q 931 Setup message is set to 17 instead of 12345 Note When enabled this feature is applied after routing and manipulation on the source number i e just before sending to the Tel side Progress In...

Страница 590: ...in response to an ISDN Alert or it sends a 183 Session Progress message with SDP in response to only the first received ISDN Proceeding or Progress message after a call is placed to PBX PSTN over the...

Страница 591: ...if a Progress or an Alerting message with PI 1 or 8 is received from the ISDN the gateway opens a voice channel sends a 183 SDP or 180 SDP response but doesn t play a ringback tone to IP If PI 1 or 8...

Страница 592: ...eived If 180 183 with SDP message is received the Board cuts through the voice channel and doesn t play RBT default Play According To Received Media The behaviour is similar to Play According to Early...

Страница 593: ...eceive send and receive RTP packets 2 Transmit send RTP packets only RTCP XR Collection Server Enum Disable Enable Instant Determines the transport layer used for outgoing SIP dialogs initiated by the...

Страница 594: ...failed Network Provided CPN set by network Play Busy Tone to Tel Enum Do Not Play Play When Disconnecting Play Before Disconnect Instant Enables the device to play a busy or reorder tone to the PSTN a...

Страница 595: ...communicate with the proxy according to the Proxy Keep Alive mechanism and no other alternative route exists to send the call The IP Connectivity mechanism is enabled and there is no connectivity to a...

Страница 596: ...teway initiates a call release If an explicit matching cause for this release isn t found a default release cause can be configured The default release cause is NO_ROUTE_TO_DESTINATION 3 Other common...

Страница 597: ...going SIP messages If a trunk group number is not associated with the call the tgrp parameter isn t included If a tgrp value is specified in incoming messages it is ignored Send And Receive The functi...

Страница 598: ...ehavior parameter see Trunk SIP Parameters Settings Enable CIC Enum No Yes Instant Defines whether Carrier Identification Code CIC is relayed to ISDN If enabled the CIC code received in an INVITE Requ...

Страница 599: ...ssage is received the timer is restarted Send Metering to IP Enum Disable Enable Instant Enables sending of metering messages to IP on detection of metering pulses CAS Disconnect On Detection of Busy...

Страница 600: ...lication isdn in the SIP messages IP Tunnel to ISDN Enum Disable Enable EnableByUsingBo dy Instant Enable ISDN Tunneling from IP side to Tel side When ISDN Tunneling is enabled the media server extrac...

Страница 601: ...G 726 The static payload type 13 is used The use of CN is negotiated between sides Therefore if the remote side doesn t support CN it is not used Note Silence Suppression must be enabled to generate...

Страница 602: ...t Cable Instant Defines whether the mptime attribute is included in the outgoing SDP The mptime attribute enables the gateway to define a separate packetization period for each negotiated coder in the...

Страница 603: ...ax session using G 711 for last two options a gpmd attribute is added to the SDP in the following format For A law a gpmd 8 vbd yes ecan on For Mu law a gpmd 0 vbd yes ecan on Detect Fax on Answer Ton...

Страница 604: ...ML identification string To start an MSCML session the application server sends a regular SIP INVITE message with a SIP URI that includes this string For example INVITE sip mscml 10 2 3 4 Subsequent I...

Страница 605: ...ncement in the local Call Progress Tone file Conference ID String Up to 15 chars Instant Defines conference identification string To join a conference the INVITE URI must include the Conference ID str...

Страница 606: ...lease Instant Defines when a RADIUS accounting report is issued Table 40 13 SIP Emergency Gateway Setting Parameter Name Type Provisioning Type Description Emergency Getway Mode Enum Disable Enable In...

Страница 607: ...Unavailable 503 Call Priority Mode Enum Disable Emergency Instant Enables priority calls handling Disable Disable default Emergency Preemption of IP to Tel E911 emergency calls If the device receives...

Страница 608: ...ed to IP Profiles in the IP Profiles table see Configuring IP Profiles In this setup they can be used as Extension coders and Allowed coders for the SBC application Note A specific coder can be select...

Страница 609: ...tring annexb no in the SDP of the relevant SIP messages If silence suppression is set to Enable w o Adaptations annexb yes is included An exception to this logic is when the remote gateway is a Cisco...

Страница 610: ...90ms t100ms t110ms t120ms t130ms t140ms t150ms Online Defines packetization time in milliseconds Determines how many coder payloads are combined into a single RTP packet If not specified the ptime get...

Страница 611: ...the IP Group Table This section describes how to configure the IP Group Table To configure the IP Group Table 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the...

Страница 612: ...oxy IP PBX or Application server is known USER represents a group of users such as IP phones and softphones where their location is dynamically obtained by the device when REGISTER requests and respon...

Страница 613: ...his entry and a SIP request is sent to the destination The device also supports NAT traversal for the SIP clients that are behind a NAT In this case the device must be defined with a global IP address...

Страница 614: ...ed to a USER type IP Group the device first forms the request URI destination_number SIPGroupN ame and then it searches the User s internal database for a match Serving IP Group Integer 1 Not Defined...

Страница 615: ...he IP phones in Survivability mode always traverse through the device In Survivability mode the device is capable of receiving new registrations When the Serving IP Group is available again the device...

Страница 616: ...for outgoing SIP INVITE messages Not Configured the routing is done according to the selected Serving IP Group If no Serving IP Group is selected the device routes the call according to the Tel to IP...

Страница 617: ...erver is used and the parameter Always Send To Proxy is Disabled Routing Table uses the Routing table to locate the destination and then sends a new INVITE to this destination Notes When this paramete...

Страница 618: ...s only if classification according to the device s database fails for locating whether the INVITE arrived from a registered user The classification proceeds with checking whether the INVITE s IP addre...

Страница 619: ...sociatedURI PC alledPartyID Cont act Instant The source URI input used in the CMR Classify Manipulate Route process in SBC Defining source URI Request If REGISTER request use the TO header as the sour...

Страница 620: ...hentication mode User Authenticates default The device does not handle the authentication however passes the authentication messages between the SIP user agents SBC Authenticates as client The device...

Страница 621: ...SIP outgoing legs Contact Name String 299 char Instant Local Host Name If configured the gateway uses the Contact Name string in its Contact and Via headers as a host name It is used for working with...

Страница 622: ...Serving IP Groups user name password Host Name and Contact User parameters 40 7 1 Configuring Account Group This section describes how to configure account groups To configure Account Groups 1 Click...

Страница 623: ...sent or Authentication is performed The actual destination to where the REGISTER requests are sent is the IP address defined for the Proxy Set associated with this IP Group This occurs only in the fol...

Страница 624: ...table upon a successful registration Notes The Trunk Group account registration is not effected by the parameter Is Register Needed You can configure this table so that a specific IP Group can registe...

Страница 625: ...table 40 8 1 Configuring the Internal DNS Table This section describes how to configure the internal DNS table To configure the SIP routing DNS settings 1 Click to access the Media Gateway status scre...

Страница 626: ...ternal SRV table is configured the Mediant 8000 initially attempts to resolve a domain name using this table If the domain name isn t found the Service Record SRV resolution is performed using an exte...

Страница 627: ...Domain Name String Up to 70 chars Instant The host name to be translated Transport Type Enum UDP TCP TLS Instant Transport type of the SRV query DNS Name 1 2 3 String Up to 98 chars Instant Up to thre...

Страница 628: ...ignaling traffic between different customers multiple gateway customers may reside either in the same or different Layer 3 networks as the device Once configured the following actions can be performed...

Страница 629: ...Parameters Parameter Name Type Provisioning Type Description Name String Up to 20 chars Instant User defined name Textual assigned to the SRD enabling users to identify it intuitively and easily Media...

Страница 630: ...2IP and SBC Separates signaling traffic of different customers to use different routing tables manipulations SIP definitions etc 40 11 1 Configuring the SIP Interfaces Table This section describes how...

Страница 631: ...SAS application SBC Session Border Controller application UDP Port Integer 1 65534 Instant Defines the listening and source UDP port Note This port must be outside of the RTP port range TCP Port Integ...

Страница 632: ...ble 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the Navigation Pane select SIP SIP General NAT Translation the NAT Translation list is displayed 4 Use the or...

Страница 633: ...e identical costs then the rule appearing higher up in the table is used i e first matched rule If a selected route is unavailable the device selects the next least cost routing rule However even if a...

Страница 634: ...ng Rule Groups list is displayed 4 Use the or buttons to add or remove entries Note only one can be added 5 Select a specific row and in the Configuration pane click SIP Routing Rule Group Frame the S...

Страница 635: ...se the or buttons to add or remove entries Note only one can be added 5 Select a specific row and in the Configuration pane click SIP Cost Group Group Frame the SIP Cost Group screen is displayed 6 Co...

Страница 636: ...Cost Group screen is displayed 6 Configure Time Band parameters according to the table Time Band Parameters below 7 Click the Maintenance icon and select Unlock to activate the configuration Time Ban...

Страница 637: ...and vulnerabilities For example the attacker might try sending a SIP message containing either an oversized parameter or too many occurrences of a parameter Perform the following steps to configure th...

Страница 638: ...d Rejection Enum PolicyReject PolicyDrop Instant Determines whether the device sends a 400 Bad Request response if a message request is rejected 0 Policy Reject If the message is a request then the de...

Страница 639: ...user s availability presence and location The basic LDAP mechanism is described below Connection The device connects and binds to the remote LDAP server either during the service s initialization at...

Страница 640: ...s This section describes how to configure the LDAP server Up to five LDAP servers can be configured Each Media Gateway SIP board can be associated with one LDAP server To configure the LDAP Servers Ta...

Страница 641: ...Note The LDAP Server IP parameter takes precedence over this parameter Thus if you want to use an FQDN keep the LDAP Server IP parameter empty LDAP Search DN String Online Defines up to three search D...

Страница 642: ...ile 3247647156 LDAPPrivateNumAttributeName Any attribute e g msRTCSIP PrivateLine Note Used only if set to same value as Primary or Secondary key msRTCSIP PrivateLine 3233554480 LDAPPrimaryKey Primary...

Страница 643: ...routing rule based on query results of the PBX IP PBX number MSLDAPPBXNumAttributeName MOBILE MOBILE mobile_number used to match a routing rule based on query results of the mobile number MSLDAPMobile...

Страница 644: ...Configure LDAP Query Attributes Table 40 25 Query Attribute Key Parameter Name Type Provisioning Type Description LDAP Server ENUM Offline This parameter associates VOIP Board with LDAP server A serve...

Страница 645: ...configured by the LDAPSecondaryKey parameter 40 15 4 Configuring AD Based Routing Rules The procedure below describes how to configure Tel to IP routing based on LDAP queries To configure LDAP based T...

Страница 646: ...en open the IP to IP routing table SIP SBC SBC Routing IP to IP Routing Table c Configure query result routing rules for each IP domain private PBX IP PBX Lync OCS clients and mobile using the LDAP ke...

Страница 647: ...PRIVATE Dest Address 10 33 45 60 2 PBX Dest Address 10 33 45 65 3 OCS Dest Address 10 33 45 68 4 MOBILE Dest Address 10 33 45 100 5 LDAP_ERR Dest Address 10 33 45 80 6 LDAP 7 Dest Address 10 33 45 72...

Страница 648: ...le to a busy line to all the relevant attribute destinations private Lync PBX and mobile and a relevant Tel to IP Release Reason see Alternative Routing for Tel to IP Calls or SBC Alternative Routing...

Страница 649: ...ell as RTP to SRTP translations To enable IP to IP call routing functionality 1 Pre load the SIP boards with a License Key that enables the IP to IP feature See Updating License Key on page 259 for de...

Страница 650: ...telephone numbers to the gateway s E1 T1 B channels Trunk Groups are used for routing IP to Tel calls with common rules Channels that are not defined are disabled 41 3 1 Configuring the Trunk Group Ta...

Страница 651: ...l call is assigned to a trunk group the call is routed to the channel or channels that correspond to the trunk group ID You can configure the Trunk Group Settings table to determine the method in whic...

Страница 652: ...rs and the phone number is defined for a range of channels e g 1 4 then the phone number must end with a number e g user1 Note This field is optional The logical numbers defined in this field are used...

Страница 653: ...orrespondingly 5 Select a specific row and then in the configuration pane click SIP Trunk Groups Settings the SIP Trunk Groups Settings screen is displayed 6 Configure the Trunk Group Settings paramet...

Страница 654: ...nding again Descending Select the highest available channel Always start at the highest channel number in the Trunk Group and if that channel is not available select the next lower channel Number Cycl...

Страница 655: ...ts channel select method is according to the global parameter ChannelSelectMode Registration Mode Enum see description Instant Registration mode per Trunk Group Per Gateway Single registration for the...

Страница 656: ...arameter to register Per Endpoint and a Trunk Group comprised of four channels is configured to register Per Gateway the media gateway registers all channels except the first four channels The Trunk G...

Страница 657: ...configured the global parameter Gateway Name is used instead Contact User String Up to 50 chars Instant The string used as the user part in the Contact URI in INVITE messages and as a user part in Fro...

Страница 658: ...s The Mediant 8000 can use a single global setting for NPI TON classification or it can use the setting in this table on a call by call basis Allow disallow Caller ID information to be sent according...

Страница 659: ...und Manipulation Set Integer 1 Not Defined to 19 Instant Outbound manipulation set ID for GW If configured applies for all incoming INVITE requests To configure Calling Name Manipulation Table for IP...

Страница 660: ...Up to 101 chars Instant Redirect Prefix Calling Name Prefix String Up to 101 chars Instant Calling Name Prefix Source Address String Up to 101 chars Instant Source Address Remove from Left Integer 0...

Страница 661: ...iguration pane click the corresponding link the corresponding Calling Name Manipulation Table for Tel to IP Settings screen is displayed 6 Configure the Calling Name Manipulation Table for Tel to IP T...

Страница 662: ...Number Manipulation IP to Tel the Redirect Number Manipulation IP to Tel list screen is displayed 4 Use the or buttons to add or remove entries correspondingly 5 Select a specific row in the Redirect...

Страница 663: ...assigned to this entry Remove from Left Integer 0 211 Instant Stripped Digits From Left Remove from Right Integer 0 211 Instant Stripped Digits From Right Leave from Right Integer 0 255 Instant Numbe...

Страница 664: ...101 chars Instant Redirect Prefix Source Trunk Group ID Integer 0 101 Instant Source Trunk Group ID Source IP Group ID Integer 0 32 Instant Source IP Group ID Number Type Enum NotIncluded Unknown Inte...

Страница 665: ...f the above criteria or using each criterion independently The Operation rules are executed in the following order 1 Num of stripped digits 2 Number of digits to leave 3 Prefix suffix to add For Desti...

Страница 666: ...he rules starting at the top of the table For this reason enter more specific rules above more generic rules For example if you enter 551 in entry 1 and 55 in entry 2 the Mediant 8000 applies rule 1 t...

Страница 667: ...Regional 1 Level 1 Regional 2 A private number with a location For example 3932200 PISN Specific 3 Level 0 Regional local 4 A private local extension number For example 2200 For NI 2 and DMS 100 ISDN...

Страница 668: ...Telephone to IP Outbound Routing Table SIP GW IP to IP Routing Telephone to IP Outbound IP To Telephone Inbound Routing Table SIP GW IP to IP Routing IP to Telephone Inbound DNS Routing Table SIP SIP...

Страница 669: ...recedence over a Proxy for routing calls In the SIP Routing Settings screen set the Prefer Routing Table parameter to Enable The Mediant 8000 checks the Destination IP Address field in the Telephone t...

Страница 670: ...ng Rules on page 679 When a release reason that is defined in the Reasons for Alternative Tel to IP Routing table is received For detailed information see Reasons for Alternative Routing on page 679 A...

Страница 671: ...lect the desired SIP board 3 In the Navigation pane select SIP GW IP to IP Routing Telephone to IP Outbound the Telephone to IP Outbound Routing list is displayed 4 Use the or buttons to add or remove...

Страница 672: ...t Prefix String Up to 50 chars Instant For Tel to IP calls leave this field empty For IP to IP calls specify the prefix of the SIP URI host name in the From header of the incoming SIP INVITE message T...

Страница 673: ...sending the Tel to IP calls When set to Not Configured the Transport Type defined in SIP Proxy Parameters is used Destination IP Group Integer 1 Not Defined or 1 9 Instant The IP Group to where you w...

Страница 674: ...l Forking Group ID Integer 1 Not Defined or 1 99 Instant Defines a forking group ID for the routing rule This enables forking of incoming Tel calls to two or more IP destinations The device sends simu...

Страница 675: ...k group for that call is available To associate an alternative trunk group to an incoming IP call assign it with an additional entry in the IP to Trunk Group Routing table repeat the same routing rule...

Страница 676: ...ard 3 In the Navigation pane select SIP GW IP to IP Routing IP to Telephone Inbound the IP to Telephone Inbound Routing list screen is displayed 4 Use the or buttons to add or remove entries 5 Select...

Страница 677: ...r URI host name prefix of the incoming INVITE message To denote any source host leave the field empty Note the asterisk wildcard cannot be used to denote any source host prefix Destination Phone Prefi...

Страница 678: ...cific rule This IP Group can later be used in the Tel to IP Outbound IP Routing table and as the Serving IP Group in the Account Groups table for obtaining the authentication user name password for th...

Страница 679: ...3 1 Alternative Routing Provisioning Rules Each Alternative Routing table enables you to define up to 4 different release reasons To enable Alternative Routing set Enable Alternative Routing paramete...

Страница 680: ...user defined name assigned to the entity MO enabling users to identify it intuitively and easily Release Cause Integer 0 232 Read Only Read only parameter indicating the release cause of the call tha...

Страница 681: ...pping This seciton describes how to configure SIP ISDN Cause Mapping To configure SIP ISDN Cause Mapping 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the Navig...

Страница 682: ...ty SIP Response Integer 400 700 Instant Defines a flexible mapping of SIP Responses and Q 850 Release Causes When a SIP response is received from the IP side the gateway searches this mapping table fo...

Страница 683: ...es different system behavior You can assign different Profiles behavior on a per call basis using the Tel to IP Oubound Routing and IP to Tel Inbound Routing tables In addition you can associate diffe...

Страница 684: ...select Unlock to activate the configuration Table 41 18 Tel Profile Parameters Parameter Name Type Provisioning Type Description Name String Up to 20 chars Instant Textual user defined name assigned t...

Страница 685: ...cho Canceller On Silence Compression Off Echo Canceler Non Linear Processor Mode Off Dynamic Jitter Buffer Minimum Delay 40 Dynamic Jitter Buffer Optimization Factor 13 If the gateway initiates a fax...

Страница 686: ...olume Integer 0 63 Instant Voice gain control in dB Sets the level for the transmitted IP to PSTN signal DTMF Volume Integer 0 31 Instant DTMF gain control in dBm Input Gain Integer 0 63 Instant PCM i...

Страница 687: ...see the ProgressIndicator2IP parameter Progress Indicator to IP Enum NotConfigured NoPI PI 1 PI 8 Instant Progress Indicator to IP NotConfigured for ISDN spans the progress indicator PI that is recei...

Страница 688: ...ert utility The dial plan index can be assigned per Tel Profile Notes If this parameter is used to select a dial plan index from the Dial Plan file the settings of the parameter Digit Mapping are igno...

Страница 689: ...General SIP Control Network IP Profile the IP Profiles list is displayed The IP Profile configuration frame is divided into the following tabs General Settings these settings are relevant for all SIP...

Страница 690: ...es apply to the same call the coders and other common parameters noted by an asterisk of the preferred Profile are applied to that call If the Preference of the Tel and IP Profiles is identical the Te...

Страница 691: ...re initiates a fax session using the coder G 711 A Law m Law with adaptations see note 1 Notes Fax adaptations Echo Canceller On Silence Compression Off Echo Canceler Non Linear Processor Mode Off Dyn...

Страница 692: ...vice class content only if IP Diff Serv is not set in the selected IP Profile Note The value for the Premium Control Diff Serv is determined by according to priority 1 IPDiffServ value in the selected...

Страница 693: ...t during silence period applicable only to G 729 Note If the selected coder is G 729 the following rules determine the value of the annexb parameter of the fmtp attribute in the SDP EnableSilenceSuppr...

Страница 694: ...y of UDP ports used for RTP RTCP and T 38 by a remote gateway If this parameter is set to a non zero value ThroughPacket is enabled Note that the value of RemoteBaseUDPPort on the local gateway must e...

Страница 695: ...useful for example when the originating gateway is located behind a firewall that blocks incoming T 38 packets on ports that have not yet received T 38 packets from the internal network i e originatin...

Страница 696: ...Operation Manual 696 Document LTRT 92224 Mediant 8000 Parameter Name Type Provisioning Type Description Vxx Transport Type Enum Disable Relay Bypass EventsOnly Instant V 21 V 22 V 23 V 32 V 34 Modem T...

Страница 697: ...efinition modem passthrough nse payload type 100 codec g711alaw Set the Modem transport type to Bypass mode for all modems Configure the gateway parameter NSEPayloadType 100 In NSE bypass mode the gat...

Страница 698: ...nterfaces if a Progress or an Alert message with PI 1 or 8 is received from the ISDN the gateway opens a voice channel sends a 183 SDP or 180 SDP response but it doesn t play a Ringback tone to IP If...

Страница 699: ...parameter Progress Indicator to IP Enum NotConfigured NoPI PI 1 PI 8 Instant NotConfigured for ISDN spans the progress indicator PI that is received in ISDN Proceeding Progress and Alert messages is u...

Страница 700: ...ng calls that don t include encryption information are accepted Mandatory The device initiates encrypted calls but if negotiation of the cipher suite fails the call is terminated Incoming calls that d...

Страница 701: ...h exceed the limit will be rejected Media IP Version Preference Enum OnlyIPv4 OnlyIPv6 PreferIPv4 PreferIPv6 Instant Determines the preferred RTP media IP addressing version for outgoing SIP calls Thi...

Страница 702: ...ation methods Not configured use the global parameter default Not Supported No negotiation DTMF digits are sent according to the parameters DTMFTransportType and RFC2833PayloadType INFO Nortel Sends D...

Страница 703: ...ng to the parameters DTMFTransportType and RFC2833PayloadType INFO Nortel Sends DTMF digits according to IETF draft choudhuri sip info digit 00 NOTIFY Sends DTMF digits according to draft mahy sipping...

Страница 704: ...sed this payload type is used for the received DTMF packets If negotiation isn t used this payload type is used for receive and for transmit Add IE in SETUP String Up to 10 chars Instant Defines an op...

Страница 705: ...ith each other regardless of their capabilities an extended coders table with at least one coder that is supported by each IP Groups user agents needs to be assigned to each IP Group Therefore each of...

Страница 706: ...calls only Both The Board can initiate encrypted or unencrypted calls if negotiation of the cipher suite fails the call is unencrypted SBC RFC2833 Behavior Enum AsIs SRTP RTP Both Instant Determines...

Страница 707: ...Enum NotConfigured DontCare AddPAssertedIdentity RemovePAssertedIdentity Instant SBC Assert Identity SBC Allowed Coders Group ID Integer 0 5 Instant Select Allowed Coders Group table SBC Allowed Code...

Страница 708: ...TRANSPARENT default in other words AS IS Once the LEG configured by such an option no intervention into either Alert responses or to the Invite request and the PRACK procedure will be necessary OPTION...

Страница 709: ...dle On ReINVITE Handle fax according to fax settings in the IP Profile for all re INVITE offer answer transactions except for initial INVITE SBC Fax Offer Mode Enum AllCoders SingleCoder Instant Defin...

Страница 710: ...a coder match between the incoming offer coders from the calling fax and the coders of the selected Coders Group ID SBCFaxCodersGroupID then the device uses this coder If no match exists then the devi...

Страница 711: ...rly media response types are supported the E SBC forwards all responses as is unchanged 1 180 Early media is sent as 180 response only 2 183 Early media is sent as 183 response only SBC Remote Multipl...

Страница 712: ...nt sends RTP immediately after it sends 18x response with early media 1 Delayed After sending 18x response the remote client waits before sending RTP e g Microsoft Lync environment SBC Remote Supports...

Страница 713: ...adds it to the re INVITE 2 Supported Default re INVITE is supported with or without SDP SBC Remote Update Support Enum NotSupported AfterConnect Support ed Instant There are sip trunks that don t sup...

Страница 714: ...Default Refer To header is unchanged 1 Reroute through SBC SBC changes the Refer To header so that the re routed INVITE is sent through the SBC 2 Group Name Sets the host part to the name defined for...

Страница 715: ...Modes The SAS feature operates in one of two modes Normal Initially the device s SAS agent serves as a registrar and an outbound Proxy server to which every VoIP CPE e g IP phones within the Enterpri...

Страница 716: ...figure the SAS application 1 Click the button to access the Media Gateway status screen 2 Select the SIP board 3 In the Navigation pane select SIP SAS 4 In the Toolbar click Configuration the SIP SAS...

Страница 717: ...egular SAS Normal Emergency logic same as option Standard however when in Normal mode incoming REGISTER requests are ignored Auto answer REGISTER When in Normal mode the device responds to received RE...

Страница 718: ...gateway SAS Registration Time Integer 1 2 000 000 Instant Defines the value of the SIP Expires header that is sent in a 200 OK response to an incoming REGISTER message when in SAS Emergency Mode SAS L...

Страница 719: ...request by a SAS proxy to force future requests in the dialog session to be routed through the SAS agent Each traversed proxy in the path can insert this header causing all future dialogs in the sessi...

Страница 720: ...ase the request is sent to the user If the user is not found the request is forwarded to the Redundant SAS Proxy Set If this SAS Proxy IP appears in the Via header of the request it is not forwarded t...

Страница 721: ...the top most Via header and the Contact header point to different hosts 1 Enable the device changes the Contact header so that it points to the SAS host and therefore the top most Via header and the C...

Страница 722: ...s Instant Defines emergency numbers for the device s SAS application When the device s SAS agent receives a SIP INVITE from an IP phone that includes one of the emergency numbers in the SIP user part...

Страница 723: ...oolbar click SAS Registration Manipulation the SAS Registration Manipulation List screen is displayed 5 Use the or buttons to add or remove entries 6 Select a specific row and in the Configuration pan...

Страница 724: ...Installation Operation Manual 724 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 725: ...ayer 3 networks e g LAN and WAN ITSP accounts SIP URI user and host name manipulations Coder Transcoding To enable the SBC application 1 Pre load the SIP boards with a License Key that enables the SBC...

Страница 726: ...ervers can be hidden from outside parties The topology hiding is provided by implementing back to back user agent SBC leg routing Strips all incoming SIP Via header fields and creates a new Via value...

Страница 727: ...eters Parameter Name Type Provision ing Type Description Enable SBC Application Enum Enabled Disable Online Enables or disables SBC functionality Note that prior to enabling the SBC application the SI...

Страница 728: ...t Media Enum Disable Enable Instant Defines the SBC media anchoring behavior Disable all cross SRD s calls via SBC are not direct media internal SRD calls are according to the SRD configuration Enable...

Страница 729: ...ed Identity header The header s values are taken from the source URL 2 Remove PAsserted Identity Header Removes the PAsserted Identity header Notes This parameter affects only the initial INVITE reque...

Страница 730: ...places the host part in the Request URI with the host from the REFER contact The prefix T R_ remains in the user part for regular classification manipulation and routing The special prefix can be used...

Страница 731: ...ontact header If the device sends this response as is i e with the original Contact header the FEU is unable to reach the new destination 0 default The device sends the received SIP 3xx response witho...

Страница 732: ...y The device provides only public GRUU to users 4 Both The device provides temporary and public GRUU to users SBC Max Forwards Limit Integer 1 70 Instant Defines the value of the Max Forwards SIP head...

Страница 733: ...ime Sec Integer 0 2 000 000 Instant Defines the duration of the periodic registrations between the user and the SBC SBC responds with this value to user When set to 0 the SBC does not change the Expir...

Страница 734: ...SBC uses the value of the parameter SBCUserRegistrationTime for the SBC response The valid range is 0 to 2 000 000 seconds Keep original user in Register Enum Disable EnableDisable Enable Instant Det...

Страница 735: ...he end of the coder list IncludeExtentions Include Extensions Extension coders and Allowed coders are arranged according to their order of appearance in the Allowed Coders Group table Note If the SBC...

Страница 736: ...x with SDP is received the device opens a voice stream according to the received SDP and disregards any subsequent 18x forking responses with or without SDP If the first response is 180 without SDP th...

Страница 737: ...initions of IP interfaces resources SIP behaviors and other definitions that partition a single SIP board into multiple virtual multi service gateways Refer to SRD Table on page 628 for a detailed des...

Страница 738: ...Refer to the SIP Interfaces Table on page 630 for a detailed description of the SIP Interfaces table and its configuration The figure below illustrates the SBC application call flow between an enterp...

Страница 739: ...all incoming SIP dialog initiation requests This includes the SIP methods such as INVITE SUBSCRIBE OPTIONS REFER INFO UNSOLICITED NOTIFY MESSAGE and REGISTER The SIP dialog initiation process consist...

Страница 740: ...p Once determined this IP Group is used for the following purposes Input for the SBC manipulation and routing processes Definition of SIP behavior via the IP Profile Media Realm and Account The classi...

Страница 741: ...empts to classify the incoming SIP request fail the call can either be rejected or allowed and processed by assigning it to the default IP Group of the default SRD This behavior is determined by the S...

Страница 742: ...ameter Name Type Provisioning Type Description Source SRD Integer 1 4 Instant Defines the index of the source SRD The source SRD is defined according to the UDP TCP TLS port at which the incoming INVI...

Страница 743: ...ow Instant Defines SIP application layer access lists It offers greater flexibility in the security mechanism of the SBC by allowing the user to configure whitelists allowed messages and blacklists de...

Страница 744: ...ondition s list is displayed 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Condition pane click SBC Condition Settings the SBC Condition Settings screen is displayed...

Страница 745: ...tination user name manipulation pre post routing 43 11 1 SBC IP to IP Routing Table The SBC IP to IP Routing table provides enhanced IP to IP call routing capabilities for routing received SIP message...

Страница 746: ...to the alternative routing load balancing provided by the Destination s IP Group s associated Proxy Set the SIP IP to IP Routing table also allows the configuration of alternative routes whereby if a...

Страница 747: ...4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click SIP IP to IP Routing Settings the SIP IP to IP Routing Settings screen is displayed 6 Configur...

Страница 748: ...he user part of the incoming SIP INVITE s destination URI usually the Request URI To denote any destination username prefix leave the field empty or use asterisk symbol Destination Host String Up to 5...

Страница 749: ...ase if SERVER type Dest Address The INVITE is sent to the address configured in the following fields Destination SRD Destination Address Destination Port and Destination Transport Type Request URI The...

Страница 750: ...URI of the received INVITE to an AOR registration record in the device s internal database The INVITE is then sent to the IP address of the registered contact Note This is only relevant if parameter D...

Страница 751: ...the parameter Destination Type is set to Dest Address When using domain names enter a DNS server IP address or alternatively define these names in the Internal DNS Table Destination Port Integer 1 655...

Страница 752: ...his alternative route only if the incoming INVITE matches this IP to IP routing rule s input characteristics Notes The alternative route entry must be defined in the next consecutive table entry to th...

Страница 753: ...2 Select the SIP board 3 In the Navigation Pane select SIP SBC SBC Routing Alternative Route Reasons the SIP Alternative Route Reasons list is displayed 4 Use the or buttons to add or remove entries...

Страница 754: ...t name source and destination manipulations are simply host name substitutions with the names defined for the source and destination IP Groups respectively if any in the IP Group table Manipulated des...

Страница 755: ...at match all or any combination of the matching rules are subsequently modified according to the Operation rules To configure SBC IP to IP Inbound Manipulation 1 Click the button to access the Media G...

Страница 756: ...field empty or use asterisk symbol Destination Host String Up to 50 chars Instant Defines the hostname of the incoming SIP request s destination URI usually the Request URI user part To denote any de...

Страница 757: ...and the user name is bobby the new user name is by Remove From Right Integer 0 255 Instant Defines the number of digits to remove from the right of the user name prefix For example if you enter 3 and...

Страница 758: ...ick SBC IP to IP Outbound Manipulation the SBC IP to IP Outbound Manipulation screen is displayed 6 Configure SBC IP to IP Outbound Manipulation parameters according to the tables SBC IP to IP Outboun...

Страница 759: ...it No Regular manipulation rule not performed in addition to the rule above it Yes If the previous table row entry rule matched the call consider this row entry as a match as well and perform the mani...

Страница 760: ...number of digits to remove from the right of the user name prefix For example if you enter 3 and the user name is bobby the new user name is bo Leave From Right Integer 0 255 Instant Defines the numbe...

Страница 761: ...vider The manipulations can also be implemented to resolve incompatibilities between SIP devices inside the enterprise network SIP messaging manipulation supports the following Addition of new headers...

Страница 762: ...Installation Operation Manual 762 Document LTRT 92224 Mediant 8000 Example of SBC Header Manipulation Figure 43 8 SBC Message Manipulation...

Страница 763: ...Select the SIP board 3 In the Navigation pane select SIP SBC SBC Message Manipulation the SBC Message Manipulation list is displayed 4 Use the or buttons to add or remove entries 5 Select a specific r...

Страница 764: ...g element only 5 Remove Suffix removes value from the end of the string string element only 6 Remove Prefix removes value from the beginning of the string string element only Action Value String Up to...

Страница 765: ...ng policies than other SIP methods 1 Determining source and destination URL s The source URL is obtained from the To header The destination URL is obtained from the Request URI 2 Classification The RE...

Страница 766: ...ndently maintained by each SIP board No information is shared between different SIP boards Database bindings are deleted in the following cases Successful de registration responses REGISTER with Expir...

Страница 767: ...tered AOR the AOR of the incoming REGISTER request c Registered contact the Contact of the incoming REGISTER request If registrations are destined to the database using the above rules the device does...

Страница 768: ...ayed 6 Configure SBC Admission Control parameters according to the table below 7 Click the Maintenance icon and select Unlock to activate the configuration Table 43 14 SBC Admission Control Settings P...

Страница 769: ...cription 1 2147483647 allowed per user Value 1 means that no limit is imposed Value 0 means that no dialogs are allowed Dialogs Rate Integer 0 65536 Instant Defines limit on dialogs rate Value 0 means...

Страница 770: ...hough the device usually does not change the negotiated media capabilities mainly performed by the remote user agents it does examine the media exchange to control negotiated media types if necessary...

Страница 771: ...coder parameters DSP resources are required 43 16 1 Media Anchoring without Transcoding Transparent To direct the RTP to flow through the device for NAT traversal firewall and security all IP address...

Страница 772: ...f different IP Groups to communicate with each other regardless of their capabilities an extended coders table with at least one coder that is supported by each IP Groups user agents needs to be assig...

Страница 773: ...ion time The device also supports early media whereby the first offer answer transaction is finalized and the media flow starts before the SIP call is connected before the INVITE 200 OK response The o...

Страница 774: ...e s SBC application interworks the media by implementing Media transcoding since both legs have different media capabilities In the SBC application forced transcoding of voice in an SBC session allows...

Страница 775: ...Part VI Maintenance This part describes the Mediant 8000 maintenance procedures...

Страница 776: ......

Страница 777: ...be restored on both SC boards The backup file contains complete configuration data including IP addresses of the SC and Media Gateway boards Therefore you should restore the backup file on the same Me...

Страница 778: ...eway status screen 2 In the Actions bar click Backup the Backup Dialog screen is displayed Figure 44 1 Backup Dialog screen 3 Select whether you wish to create Configuration Backup or Full Backup Conf...

Страница 779: ...ght click and choose the Save As option from the drop down menu To create a backup for the Media Gateway software via CLI 1 Connect to the CLI interface on Active SC board For more information see Sec...

Страница 780: ...the logged in user e g data acladmin directory for acladmin user unless you specify a complete file name starting with the symbol e g data shared 12_jan2009 bk It is recommended to end the backup file...

Страница 781: ...p done Creating backup file done Compressing backup file done Creating self extracting backup file done Backup file data acladmin backup_12jan2009 bk was successfully created 7 For safekeeping transfe...

Страница 782: ...this system are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system is prohibited and cou...

Страница 783: ...for details If current IP network configuration of the Mediant 8000 is different from the IP network configuration at the time when backup was created e g there is a difference in VLAN tags or interf...

Страница 784: ...d on the EMS server or a file stored in some other location e g on the EMS client PC or on a file server 5 Choose the backup file and click OK 6 Wait patiently while the Media Gateway software is rest...

Страница 785: ...roperly activities on this system are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system...

Страница 786: ...x backup_12jan2009 bk client238 backup_12jan2009 bk RESTORE This backup contains the following data Product type Mediant 8000 Software version 6 6 15 Binaries included Yes Created at Sun Jan 12 18 20...

Страница 787: ...ess The Media Gateway software starts automatically after the SC board completes the reboot process 8 After the SC board completes the reboot process re connect to its CLI interface and login as a reg...

Страница 788: ...in case of severe malfunction or misconfiguration The procedure for restoring the automatic backup is identical to the one described in Restoring Media Gateway Software from Backup on page 783 The on...

Страница 789: ...r 0 23 Instant Defines the hour when Automatic Backup is performed Default 3 corresponds to 3 00 AM Automatic Backup Minute Integer 0 59 Instant Defines the minute when Automatic Backup is performed D...

Страница 790: ...Installation Operation Manual 790 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 791: ...ive to static electricity Normal amounts of static electricity generated by clothing can damage electronic equipment To reduce the risk of damage due to electrostatic discharge when installing or serv...

Страница 792: ...000 chassis with blank panels to maintain the mandatory high internal airflow and to ensure continuous compliance with EMC standards Note The front blank panels are baffled panels Be sure to use this...

Страница 793: ...pped because SC boards normally have OS pre installed on them Configuring the IP address on the replaced SC board Installing software on the replaced SC board and bringing it up 45 2 1 Replacing the F...

Страница 794: ...ou hear a click 5 Wait for the hot swap blue LED to turn off 6 Fasten the screws on the front plate of the board to secure the board to the chassis and to ensure that the board has an earth connection...

Страница 795: ...y Board The procedures for replacing the TP 6310 and 8410 Media Gateway boards are identical To remove a Media Gateway board from the chassis 1 In the EMS lock the Media Gateway board to be replaced F...

Страница 796: ...rom the chassis 1 In the EMS lock the Media Gateway board of the RTM to be replaced For more information see Working with the Media Gateway Boards on page 245 2 Remove all of the cables attached to th...

Страница 797: ...in the Mediant 8000 chassis See the constraints for adding Media Gateway board listed in the following section 2 Insert the TP 6310 or 8410Media Gateway board into the designated slot in the front of...

Страница 798: ...a Gateway in the slot In less than a full configuration place boards from slot 17 to 11 and then 8 to 7 adding boards from the highest slot number to the lowest slot number Unused slots must be covere...

Страница 799: ...Screen provision the ascertained MAC addresses a Click to access the Media Gateway status screen b Select the newly added Media Gateway board and in the Action bar click Unlock c In the Navigation pa...

Страница 800: ...oard on the grooves on each end 3 Ease the board all the way into the slot until the ejector injector latches touch the chassis and it is flush with the other boards 4 Press the two black ejector inje...

Страница 801: ...g that the board can be removed 4 Pull on the two ejector injector latches and ease out the board from the slot To insert an Ethernet Switch board into the chassis 1 Hold the board Vertical with the t...

Страница 802: ...ot aligning the board on the grooves on each end 3 Ease the board all the way into the slot until the ejector injector latches touch the chassis 4 Press the two black ejector injector latches on both...

Страница 803: ...onfigure a temporary IP address on the ES board 1 Connect to the Switch Board s RS232 console 2 Log in using the username admin and password password Escape character is PTI CPC6600 from application l...

Страница 804: ...describes the procedure for replacing the Power Supply Module PS DC 8K To remove a faulty power supply 1 Unfasten the screws of the grill and remove it to access the power supply modules Figure 45 4 O...

Страница 805: ...front panel is flush with the chassis plate The green LED lights up 2 Fasten the screws of the power supply 3 Close the grill and fasten the screws at both sides 4 In the EMS main status screen verif...

Страница 806: ...turn blue 5 Open the latch and slightly pull the PEM module out of the chassis Wait for 30 seconds and then remove it completely To insert a replacement DC PEM module 1 Insert the replacement PEM modu...

Страница 807: ...ray units 2 Release the 2 screws on both sides of the Fan Tray unit Caution When removing a fan tray unit the fans continue to rotate at a high speed Use caution not to touch the rotating fan blades 3...

Страница 808: ...nt air filters should be replaced approximately every 90 days The figure below indicates the location of the filters and shows the air filter partially removed from the Mediant 8000 chassis Caution Be...

Страница 809: ...up under the card cage and pushing it into its slot 3 Fasten the screws at each end of the cable rack 4 Note the direction indicator arrow on the edge of the replacement filter With the direction indi...

Страница 810: ...Installation Operation Manual 810 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 811: ...Gateway components including System Controller SC boards Media Gateway boards Ethernet Switch ES boards The Media Gateway configuration is preserved throughout the upgrade procedure and the effect on...

Страница 812: ...utdown mode is available for all Media Gateway boards without any dependency on the Redundant Media Gateway board s availability or any specific configuration In this mode each Media Gateway board is...

Страница 813: ...ack functionality that enables roll back to the pre upgrade software version and configuration For details on performing a backup see Media Gateway Software Backup Restore Procedures on page 774 46 3...

Страница 814: ...ilarly for a bandwidth rate or 10 Mbps the transfer takes approximately 2 5 minutes 46 3 3 Verifying that the Online Software Upgrade is Supported Make sure that an upgrade from the specific Media Gat...

Страница 815: ...equals 5 minutes For Graceful Shutdown mode it may be calculated using the following formula where is the Graceful Shutdown time in minutes that is configured in the Online Software Upgrade Wizard s W...

Страница 816: ...olaris OS and 3 Media Gateway boards in a typical IP network as follows Note Even when you choose Hitless Upgrade as the preferred upgrade mechanism some Media Gateway boards may be upgraded via the G...

Страница 817: ...starting the upgrade as described in this section To reduce Online Software Upgrade time you may pre install OS patches on both SC boards prior to starting the Online Software Upgrade The pre installa...

Страница 818: ...boards match the default settings of the EMS server However for security reasons it is recommended to change these passwords to some other value See Changing the Password of EMS User on page 365 and...

Страница 819: ...ver No affect on the Media Gateway operation occurs during this transfer The Media Gateway software package transfer takes a few minutes in a typical IP network environment with 10 Mbps or better band...

Страница 820: ...xt stage 46 4 1 Starting the Online Software Upgrade Wizard The Online Software Upgrade is performed via the Online Software Upgrade Wizard that is opened from the EMS client application A single inst...

Страница 821: ...en configure the following parameters VoP Board Upgrade Mechanism preferred upgrade mechanism used for upgrading the Media Gateway boards The following options are available Hitless Upgrade Media Gate...

Страница 822: ...ed by the upgrade process Graceful Shutdown Period sec the amount of time allowed for calls to end before upgrading each Media Gateway board via the Graceful Shutdown mechanism This parameter has no a...

Страница 823: ...bandwidth If IP network connection between EMS server and the SC boards has limited bandwidth you may perform the following workaround to reduce the time of the Online Software Upgrade within the upg...

Страница 824: ...cess continues from the step at which it left off earlier 46 4 4 Upgrading the 2nd SC Board In the first stage the 2 nd initially Standby SC board s software is upgraded When upgrade on this board is...

Страница 825: ...because all required OS patches are already installed Note An upgrade between major software versions on a chassis that uses SC Rev 1 boards using the Solaris OS may take more than 3 hours due to the...

Страница 826: ...Wizard is no longer running 46 4 6 Upgrading the ES Boards The Ethernet Switch boards are upgraded one after another starting from the standby ES board the ES board that functions as a standby board...

Страница 827: ...n the relevant section Table 46 1 New Features of Version 6 6 Software that must be Manually Activated after Upgrading from an Earlier Version Feature Name Detailed Description Remote access by root u...

Страница 828: ...ful Shutdown mechanism The ES boards are downgraded to the previous version automatically one by one without any affect on the service for more information see Section Overview on page 811 Note The Hi...

Страница 829: ...client208 tools sc dn Note Stop the Media Gateway software on both SC boards as described above 5 If you can not connect via Telnet SSH to some SC board take these 3 steps a Reboot the SC board by pr...

Страница 830: ...ack of the 1 st SC board described above However it is important to rollback a 1 st SC board first which minimizes the downtime frame when the Mediant Media Gateway is not functioning If the 1 st SC b...

Страница 831: ...proceed with the Online Software Upgrade from the same point where it was interrupted To recover the Online Software Upgrade from a network failure or EMS server client crash 1 Close and re open the E...

Страница 832: ...Installation Operation Manual 832 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 833: ...on describes the recommended method for maintaining AudioCodes Mediant 8000 Media Gateway s AudioCodes provides a wide range of diagnostic tools to enable users to easily identify an error condition a...

Страница 834: ......

Страница 835: ...h as these What is the scope of the problem Does it affect one particular interface a group of interfaces or the entire Media Gateway What capabilities are affected Does the problem occur during dayti...

Страница 836: ...ut Verify that console cable pinout is correct SC Rev 1 board Solaris OS on page 64 SC Rev 2 Board Linux OS on page 66 SA Synchronization and Alarm RTM on page 69 Cable problem Replace the cable No co...

Страница 837: ...by extracting them from the chassis and re inserting them It may take up to 10 minutes for the ES boards to complete the reset procedure Working with the ES boards on page 261 No communication with t...

Страница 838: ...Gateway software starts automatically after the SC board is rebooted If this does not help one of the following scenarios must have occurred Media Gateway software is not installed on the SC board ins...

Страница 839: ...tches or Routers in Section Connecting the Mediant 8000 to the IP Network on page 217 No communication with the Media Gateway after ES board failure switchover there is no ping to SC s Global IP Two e...

Страница 840: ...s Media Gateway board is Disabled colored red in the EMS Media Gateway board is completing the Unlock action It may take up to 3 minutes for the Media Gateway board to complete the reboot that accompa...

Страница 841: ...lock unlock cycles Working with the Media Gateway Boards on page 245 Troubleshooting the Newly Installed Media Gateway Board on page 799 Diagnostics on Reset parameter is enabled In the EMS open Medi...

Страница 842: ...ote Media Gateway In the remote Media Gateway check that packetization time period Ptime is 20 msec and the correct law or A law compression is in use Configuring the Voice Settings on page 527 Silenc...

Страница 843: ...tion Connecting to IP Network on page 116 To recover the OAM VLAN settings 1 Connect to the CLI interface on the Active SC board typically located in Slot 1 via RS 232 serial console For more informat...

Страница 844: ...Installation Operation Manual 844 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 845: ...s The Syslog protocol is an event notification protocol that allows a device to send event notification messages across IP networks to event message collectors also known as Syslog servers Since each...

Страница 846: ...d displays the last number of log messages For example to see the last 100 log messages from Media Gateway board in slot 6 use the log 100 board 6 command With option f the log command displays the co...

Страница 847: ...of UDP Syslog packets thereby improving CPU utilization You can configure these Debug levels for SIP messages globally for all SIP boards by setting SIP Logging Level in the gateway level Troubleshoo...

Страница 848: ...1 through 4 49 2 1 Configuring Filter Rules The configuration of SIP logging rules is enabled at the Media Gateway level This to enable logging filters for the entire Media Gateway However a customer...

Страница 849: ...and B channel applicable only to the Gateway IP to IP application Tel to IP Filters according to a specified Tel to IP routing rule listed in the Outbound IP Routing table applicable only to the Gate...

Страница 850: ...to select traffic to be forwarded For example it is possible to select traffic between the Media Gateway board and specific remote Media Gateway Or alternatively select traffic that belongs to the spe...

Страница 851: ...these files may be sent to the AudioCodes Technical Support for further analysis Note Debug Recording Traces should never be collected on the Active SC board since this may cause Media Gateway service...

Страница 852: ...high amount of traffic the CDR data is overwritten relatively quickly 49 4 1 Collecting Call Data Records on SIP Boards You can collect Call Data Records on SIP boards and forward them to a Syslog se...

Страница 853: ...nt Determines whether CDRs are sent to the Syslog server When enabled indicates upon events they are sent Valid options include 0 Call Detail Record CDR is not used default 1 CDR is sent to the Syslog...

Страница 854: ...ce X with the number of the Media Gateway board for which you want to record CDRs client238 tpCmd moBoard 7 cp cdr start 7 To stop CDR recording at the prompt type tpCmd moBoard X cp cdr stop and pres...

Страница 855: ...e from the Media Gateway board 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 Right click the selected Media Gateway board and from the pop up menu select...

Страница 856: ...Installation Operation Manual 856 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 857: ...g debug data upon explicit request from the AudioCodes technical support It is not officially supported for any other use Access to the WEB interface of the Media Gateway board is disabled by default...

Страница 858: ...g Internet Explorer 2 Enter the following URL Error Hyperlink reference not valid address where IP address is the OAM IP address of the Media Gateway board Note Use https and not http in the URL when...

Страница 859: ...e following tasks must be performed Configure ES Mirror Filters to select IP packets that will be mirrored by each ES board Alternatively you may configure ES board to mirror all traffic from the spec...

Страница 860: ...Installation Operation Manual 860 Document LTRT 92224 Mediant 8000 Figure 51 1 IP Packets Figure 51 2 Ethernet Header Figure 51 3 IP Header...

Страница 861: ...Version 6 6 861 October 2014 Installation Operation Manual 51 Collecting Traces from the Ethernet Switch Board s Mirror Port Figure 51 4 TCP Header Figure 51 5 UDP Header Figure 51 6 ICMP Header...

Страница 862: ...ter Properties Parameter Name Type Provisioning Type Description Name String Instant The textual user defined name for the ES Mirror Filter enabling it to be identified intuitively and easily Free Use...

Страница 863: ...must be specified in decimal format When set to 1 matches all element values Src IP String Online Defines the value of the Source IP Address element in the packet s IP header bits 241 272 The value mu...

Страница 864: ...tax The syntax consists of one or more filter blocks each block consisting of the bits range and a hexadecimal value For example filter 1 16 33 134 137 a matches IP packets that have 16 bits starting...

Страница 865: ...its 177 192 The value must be specified in decimal format When set to 1 matches all element values Fragment Flag Integer 1 to 7 Online Defines the value of the Fragment Flag element in the packet s IP...

Страница 866: ...specified in decimal format When set to 1 matches all element values TCP Header Len Integer 1 to 15 Online Defines the value of the TCP Header Length element in the packet s TCP header bits 401 404 T...

Страница 867: ...port is limited therefore you may not be able to mirror traffic from more than a few internal ES board s ports Also note that capture files produced by mirroring all traffic on the specific port may...

Страница 868: ...the user may perform manual recording via the alternative software e g WireShark When mirrored traffic is sent to the Standby SC and recording is performed via the standard network capture utilities t...

Страница 869: ...on ES Board After you completed all above described configuration steps you must start mirroring on each applicable ES board Note that normally all IP traffic passes through the Active ES board Howeve...

Страница 870: ...Installation Operation Manual 870 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 871: ...of the available Log Areas Customer s Log Area logs that may be directly accessed by the customer AudioCodes Technical Support Log Area logs intended for AudioCodes Technical Support and Field Enginee...

Страница 872: ...rding TPNCP Infrastructure activities against the chassis resident boards Project bin log watchdog the directory that logs information of the watchdog activities the watchdog constantly monitors state...

Страница 873: ...ogs by specifying board slot number instead of the logfile For more information see Section Collecting Advanced Media Gateway Board Logs on page 843 Without any options the log command displays the ne...

Страница 874: ...e collected via EMS GUI or alternatively via command line interface CLI To collect the Report file via the EMS GUI 1 Click to access the Media Gateway status screen 2 In the Actions bar click Collect...

Страница 875: ...ENERATE BUG REPORT Enter bug report file name report tar report tar Include VoP board logs y n y Collect some summary data Pack data into the report tar Compress report file Please deliver file report...

Страница 876: ...Installation Operation Manual 876 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 877: ...ion of the Media Gateway configuration including the number and type of Media Gateway boards network configuration signaling protocols being used the exact software version 2 A detailed description of...

Страница 878: ...Installation Operation Manual 878 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 879: ...Part VIII Appendices This part describes additional Mediant 8000 configuration procedures...

Страница 880: ......

Страница 881: ...VLAN tagging is not used Three Subnets are used for management OAM call control and media traffic subnets are separated via the use of tagged VLANs and a single physical interface is used for connecti...

Страница 882: ...Basic Configuration of the Mediant 8000 Software on page 146 When prompted provide the allocated IP address e g 10 8 1 10 3 Connect to the CLI interface on the Active SC board typically located in Sl...

Страница 883: ...d in the EMS GUI It may take up to 5 minutes for all Media Gateway boards to complete the restart When the Media Gateway board returns to service its Operational State will be changed to Enabled and t...

Страница 884: ...ationalState OperationalState Enabled 1 d Unlock the ES board in slot 19 SC 1 moGW unlock esboard 19 Performing unlock action on moGW moSwitchBoard 19 OK e Wait up to 10 minutes until the ES board in...

Страница 885: ...erface To configure the Mediant 8000 for a specific network setup 1 Configure the basic IP network parameters of the SC boards as described in Configuring the Basic IP Network Parameters of the SC Boa...

Страница 886: ...see Connecting to the CLI via an RS 232 Serial Console on page 109 4 Login as a CLI user with administrative privileges e g acladmin For more information see Logging into the Command Line Interface on...

Страница 887: ...way board s IP Addresses modify moBoard 11 moBoardIPAddress 1 10 6 1 20 modify moBoard 11 moBoardIPAddress 2 10 7 1 20 modify moBoard 11 moBoardIPAddress 3 10 8 1 20 modify moBoard 12 moBoardIPAddress...

Страница 888: ...to 10 minutes until the ES board in slot 9 completes the restart operation and returns to service Use the following command to determine whether the ES board has completed the restart operation or not...

Страница 889: ...and the Cisco L3 switch network The appendix also describes test failure scenarios The procedures described in section Configuring the User Environment Cisco L3 switch on page 893 are based on HSRP h...

Страница 890: ...Installation Operation Manual 890 Document LTRT 92224 Mediant 8000 Figure B 1 HSRP VRRP Configuration...

Страница 891: ...VLAN ID 11 MEDIA VLAN ID 12 B 2 3 OAM Subnet Settings It is presumed that the SC boards are already configured with the correct IP addresses that belong to the OAM Subnet 10 77 10 0 24 If this is not...

Страница 892: ...y moSubnet 2 VLANTagID 11 add moSubnet 3 modify moSubnet 3 SubnetIP 10 77 12 0 modify moSubnet 3 SubnetPrefixBitsLength 24 modify moSubnet 3 DefaultGW 10 77 12 1 modify moSubnet 3 VLANTagID 12 add moN...

Страница 893: ...odify moGW moBoard 7 MediaARPCacheoverride EnableGARP 2 B 3 Configuring the User Environment Cisco L3 switch This section describes the CLI configuration actions required on the Cisco L3 switch B 3 1...

Страница 894: ...ity of all VLAN interfaces is 100 default values In the example by default if there is no failure the active L3 switch is 3560_G2 standby 10 priority 105 Configure an interface to track other interfac...

Страница 895: ...ommand channel group XXX mode on port channel load balance dst ip interface Port channel1 interface Port channel2 interface GigabitEthernet0 1 interface GigabitEthernet0 2 channel group 1 mode active...

Страница 896: ...10 12 switchport mode trunk channel group 3 mode active interface GigabitEthernet0 2 switchport trunk encapsulation dot1q switchport trunk allowed vlan 10 12 switchport mode trunk channel group 3 mod...

Страница 897: ...ndby 1 priority 105 standby 1 preempt standby 1 authentication HSRP1 standby 1 track GigabitEthernet0 20 standby 1 track GigabitEthernet0 21 standby 1 track GigabitEthernet0 22 interface Vlan10 ip add...

Страница 898: ...ip address 10 77 12 2 255 255 255 0 standby 12 ip 10 77 12 1 standby 12 timers msec 330 msec 990 standby 12 priority 105 standby 12 preempt standby 12 authentication HSRP12 standby 12 track GigabitEth...

Страница 899: ...the other hand the active L3 switch is chosen according to the failed link between 3560_G2 and 3560_G3 and between 3560_G2 and 3560_G1 In the EMS the active Ethernet Switch is displayed To verify the...

Страница 900: ...default state In the EMS right click board 19 and select Maintenance Align All Boards To Me state 2 Shut down 1 link from channel group 1 on 3550_G2 Cisco state 2 Shut down 1 link from channel group 2...

Страница 901: ...1 2 Initial State 2 In the EMS right click board 9 and select Maintenance Align All Boards To Me state 1 Shut down 1 link from channel group 1 on 550_G3 Cisco state 1 Shut down 1 link from channel gro...

Страница 902: ...State 3 In EMS right click board 9 and select Maintenance Align All Boards To Me state 4 Shut down 1 link from channel group 1 on 3550_G3 Cisco state 4 Shut down 1 link from channel group 2 on 3550_G...

Страница 903: ...1 4 Initial State 4 In EMS right click board 19 and select Maintenance Align All Boards To Me state 3 Shut down 1 link from channel group 1 on 3550_G2 Cisco state 3 Shut down 1 link from channel grou...

Страница 904: ...Installation Operation Manual 904 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 905: ...basic understanding of how to operate the product Adjacent to each test case there is a reference to the relevant chapter in the documentation The tester should read these chapters to acquire the requ...

Страница 906: ...active SC board the one with the grey background in the EMS GUI Verify that SC switchover has successfully completed another SC board should become active Wait till the initially active SC board retu...

Страница 907: ...the state of the Media Gateway boards Select 1 st Media Gateway board in the Media Gateway s status screen In the Information Panel verify the following Administrative State is Unlocked Operational St...

Страница 908: ...is Enabled Verify that all PSTN links trunks are properly recovered on the redundant Media Gateway board Lock and unlock the Media Gateway board where you performed Switch Over maintenance action Wait...

Страница 909: ...13 Verify the state of the Media Gateway board s clock synchronization Verify the status of the System Clock on the Media Gateway status screen Normally configured System Clock is color coded green Op...

Страница 910: ...Installation Operation Manual 910 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Страница 911: ...cs Alarm board diagnostics alarm 17 NTP Server Status Changed NTP server status changed 18 GW Switchover Alarm GW switchover alarm 19 Configuration Change configuration change 20 SS7 Activity State Ch...

Страница 912: ...efore some alarms are suppressed 42 Board CPU Overload Alarm board CPU overload alarm 43 Trunk Activity State Change Alarm change of trunk s activity status 44 V5 2 Port File Alarm v5 2 port configura...

Страница 913: ...iant 8000 System 797 Adding the Media Gateway Software to the EMS Server 819 Additional Network Services and Settings 212 Additional Network Settings 203 Additional OAM Subnet Configuration 197 Admini...

Страница 914: ...609 Collecting Advanced Media Gateway Board Logs 845 873 Collecting Call Data Records CDRs 852 Collecting Call Data Records CDRs on MEGACO Boards 854 Collecting Call Data Records on SIP Boards 852 Co...

Страница 915: ...roller 285 Configuring Media Link Aggregation 194 Configuring Media Realms 210 739 Configuring MEGACO Virtual Gateways 283 Configuring MGCP MEGACO Call Control Settings 277 283 Configuring Mirror Dest...

Страница 916: ...189 196 215 Connecting Cables to Media Gateway s RTM Module 797 Connecting E1 T1 PSTN Cables TP 8410 Boards 125 Connecting IP Network Cables 121 Connecting Mediant 8000 to IP Network 185 Connecting ST...

Страница 917: ...ard Actions ES 6600 262 ES Board Actions ES 2 262 ES 6600 ES Ethernet Switch Board 73 ES 6600 Physical Slots to Ethernet Port Mapping 76 ES 6600 RTM Rear Transition Module 78 121 ES 2 ES Ethernet Swit...

Страница 918: ...from the USB CD DVD Drive via the RS 232 Serial Console 244 Installing the Linux OS from the USB Flash Drive via the RS 232 Serial Console 238 245 Installing the Linux OS on the SC Rev 2 Board 231 Ins...

Страница 919: ...ational State 160 Manipulation on all Inbound Outbound SIP INVITE 658 Manipulation Tables 658 Media Gateway Boards Configuration Backdoor 417 Media Gateway Board Actions 247 249 797 Media Gateway Boar...

Страница 920: ...d 147 307 362 Performing Basic Configuration of the Mediant 8000 Software on the SC Board to Operate as the Standby Board 150 307 Performing the Online Software Upgrade 820 Planning the Maintenance Ti...

Страница 921: ...ateway Software from Backup 783 788 Rollback 828 Routing Based on LDAP Active Directory Queries 639 Routing using Registrations Database 767 S SA RTM Replacement Procedure 797 800 SA RTM Synchronizati...

Страница 922: ...8 State s Line Structure 440 Static Routes 203 Stopping Mirroring on ES Board 869 STP Functionality Alias Point Code 504 Subnets and Network Profiles Settings 892 Supported Actions 420 Supported SS7 A...

Страница 923: ...e of OAM Control and Media Subnets by Mediant 8000 Boards 185 User Registration 765 Using Auxiliary Files 421 Using External NTP Servers 266 Using Tagged VLANs for Subnet Separation 188 Using the EMS...

Страница 924: ...Media Gateway Mediant 8000 www audiocodes com Installation Operation Maintenance Manual...

Отзывы:

Нет отзывов

Похожие инструкции для Mediant 8000

UNIGATE MB EtherCAT

Бренд: DEUTSCHMANN AUTOMATION Страницы: 60

Бренд: Askey Страницы: 61

SmartRG SR808ac

Бренд: Primus Страницы: 2

Бренд: Milesight Страницы: 21

Бренд: MOKO Страницы: 34

Conquest HPO-9007 Series

Бренд: KMC Controls Страницы: 6

Бренд: FireAngel Страницы: 6

Бренд: ZyXEL Communications Страницы: 4

Busch-free@home DG-M-1.16.11

Бренд: Busch-Jaeger Страницы: 35

HomePortal 5011NV

Бренд: 2Wire Страницы: 18

HomePortal 2701HGV

Бренд: 2Wire Страницы: 21

Бренд: Bang & Olufsen Страницы: 62

Бренд: SmartRG Страницы: 16

Бренд: Weiser Страницы: 2

Бренд: CheckVideo Страницы: 2

ISCOM HT803G-WS2

Бренд: Raisecom Страницы: 16

Бренд: Raisecom Страницы: 18

Бренд: RTA Страницы: 63

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды