AudioCodes Mediant 8000 Installation, Operation & Maintenance Manual Download | Manualshive

Page: 325 / 924

background image

Version 6.6

325

October 2014

Installation & Operation Manual

33. Configuring Security Settings

33.10

X.509 Public Key Infrastructure

X.509 is an ITU-T standard for Public Key Infrastructure (PKI). The X.509 standard
was adapted to the Internet by the IETF PKIX working group (RFC 3280) and is
currently the most widely used PKI standard that is utilized by many security
applications, including SIP/TLS, HTTPS (SSL) and IPSEC/IKE.

The X.509 standard is typically used by applications that perform Public Key
cryptography, also known as Asymmetric cryptography. The latter is a form of
cryptography in which a user has a pair of cryptographic keys – a Public Key and a
Private Key. The Private Key is kept secret, while the Public Key may be widely
distributed. These keys are related mathematically; however, the Private Key can not
be practically derived from the Public Key. A message encrypted with the Public Key
can be decrypted only with the Private Key.

X.509 Public Key infrastructure uses Certificates to bind together a Public Key with an
identity information, such as the name of the person or organization and their address.
The Certificates are distributed between the participating parties and can be used to
verify that the Public Key belongs to an individual.

In a typical PKI scheme, Certificates are issued by a Certificate Authority (CA) and
provide an attestation by the certificate signer (CA) that the identity information and
the public key belong together. CAs are organized in a structured hierarchical system
that represents the trust relationships between them.

Each party has a list of Trusted Root Certificates – certificates of the CAs (or their
roots) that are well-known and trusted by the party. When the certificate from the other
party is received, its signing entity (CA) is compared with the Trusted Root Certificates
list and if the match is found, the certificate is accepted.

In the Mediant 8000 Media Gateway, X.509 Certificates are used by the following
applications:



SIP/TLS – for secure SIP call control messaging.



HTTPS (SSL) – for internal communication between the SC and the Media
Gateway boards (e.g. for online provisioning of Auxiliary Files) and for secure
access to the Media Gateway board's advanced status summary via WEB
interface.



IPSEC/IKE – for secure MGCP/MEGACO call control messaging; X.509
Certificates may be used as an alternative to pre-shared key authentication
mode.

The Mediant 8000 Media Gateway uses the following files to implement X.509 Public
Key Infrastructure:



Private Key File

– contains a private key that is used to perform decryption; it is

the most sensitive part of security data and should never be disclosed to other
entities.



Certificate File

– contains a digital signature that binds together Public Key with

an identity information; Certificate may be issued by a CA (e.g. Veritas) or be self-
signed (issued by the entity itself).



CA Certificate File

– certificate of the CA that issued Certificate for the Mediant

8000 Media Gateway; optional file that if present is used to validate the Certificate
file.

«
...
323
324
325
326
327
...
»

Summary of Contents for Mediant 8000

Page 1: ...Media Gateway Mediant 8000 Installation Operation Maintenance Manual Version 6 6 Document LTRT 92224...

Page 2: ......

Page 3: ...Redundant 51 10 TP 8410 Media Gateway Board 53 10 1 LED Array Display 55 11 8410 RTM Rear Transition Module 57 11 1 8410 RTM E1 T1 Trunk Connectors 58 11 2 8410 RTM Redundant 61 12 System Controller...

Page 4: ...ty 96 15 6 Allocating IP Addresses 97 15 7 Preparing the PSTN Network Connectivity 98 15 7 1 Preparing the STM 1 OC 3 PSTN Connections 98 15 7 2 Preparing the T3 PSTN Connections 98 15 7 3 Preparing t...

Page 5: ...as the Active board 134 21 1 5 Installing the Mediant 8000 Software on the SC Board to Operate as the Standby Board 140 21 2 Peforming Basic Configuration of the Mediant 8000 Software 146 21 2 1 Perf...

Page 6: ...2 6 1 Benefits 191 26 2 6 2 Distribution Rules 191 26 2 6 3 Link Aggregation Control Protocol 193 26 2 6 4 Aggregated Link Failure Detection 193 26 2 6 5 Configuring Media Link Aggregation 194 26 3 Co...

Page 7: ...the SC Board 229 27 7 Installing the Linux OS on the SC Rev 2 Board 231 27 7 1 Verifying the Current Version of the Linux OS on the SC Board 231 27 7 2 Linux OS Installation Requirements 232 27 7 3 R...

Page 8: ...Media Gateway Controller in the EMS 277 31 2 MGCP Control Protocol 278 31 3 MEGACO Control Protocol 278 31 4 Media Gateway Controller Addressing 279 31 4 1 Via FQDN Name 279 31 4 2 Via IP Addresses 2...

Page 9: ...2 Installing the Latest OS Security Patches from the OS Security Patch Bundle 315 33 8 File System Integrity 316 33 8 1 Viewing the File System Integrity Status 316 33 8 2 Scheduling File System Integ...

Page 10: ...odes 361 33 18 2 Administering the ROOT User 362 33 18 2 1 Changing the ROOT User Password 362 33 18 2 2 Recovering the ROOT User Password 364 33 18 3 Administering the EMS User 365 33 18 3 1 Changing...

Page 11: ...Call Progress Tones CPT File 423 37 2 1 1 The Call Progress Tones Section Format 423 37 2 1 2 The User Defined Tones Section Format 425 37 2 1 3 Default Configuration 426 37 2 1 4 Editing the Source...

Page 12: ...the MTP3 M3UA Application 485 38 6 4 1 MTP3 M3UA Operational Status 498 38 6 4 2 Online Provisioning 498 38 6 4 3 Redundant Configuration 499 38 6 4 4 Advanced Configuration 503 38 6 4 5 STP Functiona...

Page 13: ...unt Group 622 40 8 SIP Routing DNS Table 625 40 8 1 Configuring the Internal DNS Table 625 40 9 SIP SRV to IP Table 626 40 9 1 Configuring the SIP SRV to IP Table 626 40 10SRD Table 628 40 10 1 Config...

Page 14: ...o IP Outbound Routing Provisioning Rules 669 41 6 1 2 Possible Uses for Telephone to IP Outbound Routing 669 41 6 1 3 Configuring Telephone to IP Outbound Routing 671 41 6 2 IP to Telephone Inbound Ro...

Page 15: ...Media Handling 770 43 16 1 Media Anchoring without Transcoding Transparent 771 43 16 2 Media Anchoring with Transcoding 772 43 16 3 Transcoding Modes 774 Maintenance 775 44 Media Gateway Software Back...

Page 16: ...Software Upgrade 813 46 3 1 Preparing the Media Gateway 813 46 3 2 Preparing the IP Network 814 46 3 3 Verifying that the Online Software Upgrade is Supported 814 46 3 4 Planning the Maintenance Time...

Page 17: ...Media Gateway Board via WEB 857 51 Collecting Traces from the Ethernet Switch Board s Mirror Port 859 51 1 Configuring ES Mirror Filters 859 51 1 1 ES 6600 859 51 1 2 ES 2 859 51 2 Configuring Mirrori...

Page 18: ...893 B 3 Configuring the User Environment Cisco L3 switch 893 B 3 1 IP Address 893 B 3 2 Link Aggregation 893 B 3 3 Cisco L3 Switch HSRP 894 B 3 4 Example Configuration Output 895 B 3 5 show running co...

Page 19: ...13 2 ES 6600 RTM Panel 78 Figure 13 3 ES 2 Board Panel 81 Figure 13 4 ES 2 RTM 85 Figure 16 1 Attaching the Chassis to the Rack 101 Figure 16 2 Chassis on the Rack Front and Side Views 102 Figure 16...

Page 20: ...Centralized TACACS Servers 377 Figure 33 8 Centralized User Authentication via RADIUS Protocol 385 Figure 33 9 PuTTY Key Generator 391 Figure 33 10 PuTTY Key Generator Public Key 392 Figure 33 11 PuT...

Page 21: ...ation Process 741 Figure 43 5 SBC Application IP to IP Routing Types 746 Figure 43 6 SBC Application Inbound and Outbound Manipulation 754 Figure 43 7 Example of SBC Application Manipulation 754 Figur...

Page 22: ...861 Figure 52 1 Viewing an SNMP Trap Log 873 Figure A 1 Network Example 1 One Subnet No VLANs 881 Figure A 2 Network Example 2 Three Subnets VLAN Tags One Physical Interface 885 Figure B 1 HSRP VRRP...

Page 23: ...hysical Front Slots to Ethernet Port Mapping 83 Table 13 6 ES 2 Physical Rear Slots to Ethernet Port Mapping 84 Table 13 7 ES 2 RTM Port Pin Outs 86 Table 13 8 ES 2 RS 232 Pin Layout 86 Table 14 1 Boa...

Page 24: ...rity Status Parameters 317 Table 33 2 Filesystem Integrity Configuration Parameters of the Media Gateway 319 Table 33 3 Media Gateway Security Settings 332 Table 33 4 X 509 Files Status Parameters of...

Page 25: ...runk s ISDN DPNSS Parameters 509 Table 38 24 E1 T1 Trunk s CAS Parameters 512 Table 38 25 General Timing Module Settings Parameters 520 Table 38 26 TM External IF Settings Parameters 521 Table 38 27 T...

Page 26: ...D Parameter 659 Table 41 5 Calling Name Manipulation Table for IP to Tel Table Parameter 660 Table 41 6 Calling Name Manipulation Table for Tel to IP Table Parameter 661 Table 41 7 Redirect Number Man...

Page 27: ...760 Table 43 13 SIP SBC Message Manipulation Table 763 Table 43 14 SBC Admission Control Settings 768 Table 44 1 Automatic Backup Parameters 788 Table 46 1 New Features of Version 6 6 Software that mu...

Page 28: ...Installation Operation Manual 28 Document LTRT 92224 Mediant 8000 This page is left blank intentionally...

Page 29: ...TrunkPack VMAS VoicePacketizer VoIPerfect VoIPerfectHD What s Inside Matters Your Gateway To VoIP and 3GX are trademarks or registered trademarks of AudioCodes Limited All other products or trademark...

Page 30: ...LTRT 914xx CLI Reference Guide Provides a predefined set of commands with a choice of options that comprehensively cover the maintenance tasks required on the media gateway Document LTRT 892xx EMS Us...

Page 31: ...rk Equipment Providers NEP and System Integrators rapid time to market and reliable cost effective deployment of next generation networks The Mediant 8000 is a robust scalable and modular solution des...

Page 32: ...Installation Operation Manual 32 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 33: ...Part I Hardware Overview This part describes the hardware overview of the Mediant 8000 chassis...

Page 34: ......

Page 35: ...Module ES 2 RTM ES 6600 RTM 2 Media Gateway boards The following boards may be used TP 6310 TP 8410 Up to 9 Media Gateway boards Rear Transition Modules Each Media Gateway board must be equipped with...

Page 36: ...Installation Operation Manual 36 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 37: ...Back Views 3 Front and Back Views Note Depending on the ordered configuration the actual views of your Mediant 8000 may differ from the figures below For example you may have different type or number...

Page 38: ...Installation Operation Manual 38 Document LTRT 92224 Mediant 8000 Figure 3 2 Mediant 8000 Back View...

Page 39: ...en on the top of the card cage in the front of the chassis and on the bottom of the card cage in the back for identifying board placement The mid plane contains slot keys to match the appropriate boar...

Page 40: ...s compatible with Common Bonding Network CBN and Isolated Bonding Network IBN installations The Equipment is compatible with DC C and DC I networks 4 2 Midplane Keying Each chassis slot is equipped wi...

Page 41: ...1 PEM DC 8K Power Entry Module PEM DC 8K Power Entry Modules are used for connecting the Mediant 8000 chassis to the DC power sources Two PEM DC 8K modules are installed in the back of the chassis and...

Page 42: ...ts PS DC 8K Power Supply modules are hot swappable Figure 5 2 PS DC 8K Power Supply Module 5 2 1 DC Input Power DC power sources must meet the following requirements 48V SELV direct current power sour...

Page 43: ...orated grill whose honeycombed design prevents RF interference The second FM 8K Fan Tray Module provides redundant protection should one develop a fault Figure 6 1 FM 8K Fan Tray Module 6 1 Air Flow C...

Page 44: ...Installation Operation Manual 44 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 45: ...Indicators are very brief and high level Use the EMS management interface for obtaining detailed information about the status of each hardware module Table 7 1 Alarm Indicator LED Description Color C...

Page 46: ...Installation Operation Manual 46 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 47: ...OC 3 interfaces APS protected 3 T3 DS 3 interfaces 6 connectors 3 RX and 3 TX TP 6310 Media Gateway boards feature N 1 redundant protection which ensures that when specific TP 6310 board fails all tra...

Page 48: ...information about the status of the board and each of its component Table 8 1 TP 6310 Board Status LED Indicators Group LED LED Label Color Description ACT Not in use PSTN for STM 1 OC3 configuration...

Page 49: ...t is installed in the rear side of the chassis behind the corresponding TP 6310 board and features the following interfaces STM 1 OC 3 PSTN T3 DS 3 PSTN Each STM 1 OC 3 connection uses a 155 Mbps opti...

Page 50: ...Installation Operation Manual 50 Document LTRT 92224 Mediant 8000 Figure 9 1 6310 RTM Front Panel Note The unused SFP receptacles must be covered with dust covers...

Page 51: ...igured as a redundant board must be accompanied by a proper Redundant RTM module The latter has no connectors on it and is used for routing PSTN links from the failed TP 6310 board to the redundant bo...

Page 52: ...Installation Operation Manual 52 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 53: ...channels per trunk 1302 DS0 channels 42 T1 interfaces with up to 24 channels per trunk 1008 DS0 channels TP 8410 Media Gateway boards feature N 1 redundant protection which ensures that when specific...

Page 54: ...mponents Table 10 1 TP 8410 Board LEDs LED Label Description Color ACT Not in use E1 T1 1 8 E1 T1 is synchronized Green Alarm LOS LFA or AIS is detected on E1 T1 trunk Red No E1 T1 trunk Off GBE 1 2 M...

Page 55: ...lay button located to the left of the LED display the status of the next eight consecutive trunks is indicated by the E1 T1 LEDs For example when you first press the LED Array Push button the first gr...

Page 56: ...Installation Operation Manual 56 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 57: ...ear Transition Module is a hot swappable rear module that provides PSTN connectivity for the TP 8410 Media Gateway board It is installed in the rear side of the chassis behind the corresponding TP 841...

Page 58: ...in female connector used for connecting trunks 26 42 Figure 11 2 8410 RTM 100 Pin SCSI Connector The 100 pin female SCSI connector is shown in the figure above must mate with a male connector that is...

Page 59: ...1 to 25 RTM 8410 Tx Pins Tip Ring Rx Pins Tip Ring 12 24 23 74 73 13 26 25 76 75 14 28 27 78 77 15 30 29 80 79 16 32 31 82 81 17 34 33 84 83 18 36 35 86 85 19 38 37 88 87 20 40 39 90 89 21 42 41 92 9...

Page 60: ...connector pinouts in the following table Table 11 2 8410 RTM 68 pin SCSI Connector E1 T1 Number 26 to 42 RTM 8410 Tx Pins Tip Ring Rx Pins Tip Ring 26 2 1 36 35 27 4 3 38 37 28 6 5 40 39 29 8 7 42 41...

Page 61: ...red as a redundant board must be accompanied by a proper Redundant RTM module The latter has no port connections and is used for routing PSTN E1 T1 trunks from the failed TP 8410 board to the redundan...

Page 62: ...Installation Operation Manual 62 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 63: ...s 1 and 2 color coded red The following hardware revisions of the SC Boards are available SC Rev 1 first generation SC board based on SUN CP2300 SBC runs SUN Solaris OS SC Rev 2 second generation SC b...

Page 64: ...llation Operation Manual 64 Document LTRT 92224 Mediant 8000 12 1 SC Rev 1 board Solaris OS The SC Rev 1 board is based on the SUN CP2300 SBC and runs the SUN Solaris 9 OS Figure 12 1 SC Rev 1 Board P...

Page 65: ...d has LED indicators on its front panel that are used to indicate the status of the board Table 12 1 SC Rev 1 Board LED Indicators LED Description Color Activity Located on the hard disk PMC module Bl...

Page 66: ...ation Operation Manual 66 Document LTRT 92224 Mediant 8000 12 2 SC Rev 2 Board Linux OS SC Rev 2 is a next generation SC board that uses an Intel CPU and runs on the Linux OS Figure 12 3 SC Rev 2 Boar...

Page 67: ...board may be used instead At any time only one serial console port is active either on the SC board or on the SA RTM board To switch between these serial console ports use the Front Rear serial port s...

Page 68: ...net link status Only the first two LEDs are in use Normal operation 1Gbps mode Green Normal operation 100 Mbps mode Orange Link disconnected Off Storage Activity Blinks during normal operation when th...

Page 69: ...d by the SC board management software such as control over the fan trays monitoring of the chassis voltages etc The SA RTM board may be optionally equipped with a Timing Module that is used to provide...

Page 70: ...ard Off HOT SWAP Normal operation Off Board is ready for extraction from the chassis latches are open Blue 12 3 1 SA RTM RS 232 Console Port The SA RTM board provides RS 232 console port that may be u...

Page 71: ...ical COM NC NO 3 MJR Major COM NC NO 3 MNR Minor COM NC NO 3 USR User Defined COM x2 NC NO IN 1 IN 2 6 One COM connector and IN 1 and IN 2 connnectors are for future use To mute the Telco alarm relay...

Page 72: ...TRT 92224 Mediant 8000 12 3 3 1 Built In LED Interface Each SA RTM BITS Interface has LEDs that indicate its status Table 12 7 SA RTM BITS Interface LEDs Label Color Function LED 1 Off No Signal Green...

Page 73: ...of the Mediant 8000 software Note You may not install ES boards of different hardware revisions on the same chassis 13 1 ES 6600 ES Ethernet Switch Board The ES 6600 is a hot swappable Compact PCI bo...

Page 74: ...Installation Operation Manual 74 Document LTRT 92224 Mediant 8000 13 1 1 ES 6600 Board Panel The figure below illustrates the ES 6600 board panel Figure 13 1 ES 6600 Board Panel...

Page 75: ...lt condition on the board Off Normal state Red Fault condition is detected Port Activity Indicates the activity status for each of the 24 available Ethernet Ports See ES 6600 Physical Slots to Etherne...

Page 76: ...h Port Dedicated to Board Type 1 13 13 SC 2 14 14 SC 3 N A 4 15 15 Redundant TP 8410 5 N A 6 N A 7 16 16 TP 6310 or TP 8410 8 17 17 TP 6310 9 11 12 Ethernet Switch 10 N A 11 18 18 TP 6310 or TP 8410 1...

Page 77: ...sed as the only uplink for the Mediant 8000 When Interface Separation is enabled used for Media traffic May be aggregated with ports 21 and 22 for additional capacity 21 21 Uplink When Interface Separ...

Page 78: ...erted in the rear Mediant 8000 chassis slots behind the corresponding ES 6600 Ethernet Switch Boards It provides 10 100 1000Base T ports that are used for connecting the Mediant 8000 chassis to the ex...

Page 79: ...Version 6 6 79 October 2014 Installation Operation Manual 13 Ethernet Switch Board Table 13 3 ES 6600 RTM Port Pin Outs Pin Number Signal Name 1 TRDB 2 TRDB 3 TRDA 4 TRDD 5 TRDD 6 TRDA 7 TRDC 8 TRDC...

Page 80: ...way and the SC boards The ES 2 board has 24 10 100 1000Mbps ethernet ports 14 of these ports are connected to the Mediant 8000 midplane slots that correspond to SC Media Gateway boards and F LINK 10 o...

Page 81: ...Version 6 6 81 October 2014 Installation Operation Manual 13 Ethernet Switch Board 13 2 1 ES 2 Front Panel The figure below illustrates the ES 2 board panel Figure 13 3 ES 2 Board Panel...

Page 82: ...atus for each of the 24 available Ethernet Ports See Section ES 2 Physical Slots to Ethernet Port Mapping below to determine where the specific Ethernet Port is connected Green Port is connected Off P...

Page 83: ...lots to Ethernet Port Mapping Chassis Slot Number Slot 9 Ethernet Switch Port Slot 19 Ethernet Switch Port Dedicated to Board Type 1 13 13 SC 2 14 14 SC 3 N A 4 15 15 Redundant TP 8410 5 N A 6 N A 7 1...

Page 84: ...thernet switch port according to the specific interface type Table 13 6 ES 2 Physical Rear Slots to Ethernet Port Mapping Interface Separation 1 2 3 4 5 6 7 8 9 10 ONE_O_C_M OCM OCM OCM Mirror TWO_O_C...

Page 85: ...Transition Module The ES 2 RTM Rear Transition Module is inserted in the rear Mediant 8000 chassis slots behind the corresponding ES 2 Ethernet Switch boards It provides 10 100 1000Base T ports that a...

Page 86: ...Table 13 7 ES 2 RTM Port Pin Outs Pin Number Signal Name 1 TRDB 2 TRDB 3 TRDA 4 TRDD 5 TRDD 6 TRDA 7 TRDC 8 TRDC The following table shows the ES 2 RS 232 Terminal PIN layout Table 13 8 ES 2 RS 232 P...

Page 87: ...lank Panel Blank Panel Slot 7 TP 6310 8 or TP 8410 6 6310 RTM or 8410 RTM Slot 8 TP 6310 7 6310 RTM Slot 9 ES 6600 or ES 2 ES 6600 RTM or ES 2 RTM Slot 10 Blank Panel Blank Panel Slot 11 TP 6310 6 or...

Page 88: ...Installation Operation Manual 88 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 89: ...nterface For more information see Section Command Line Interface on page 107 Connect the Mediant 8000 to the IP network For more information see Section Connecting to IP Network on page 116 Connect th...

Page 90: ......

Page 91: ...sis must be installed in a 19 inch Telco Rack Space requirements as per GR 63 CORE are Maintenance access 762 mm 2 6 Wiring access 610 mm 2 Screws and washers Appropriate for installing the Mediant 80...

Page 92: ...s CAT 5 Gigabit Ethernet copper cables are required for connecting the Mediant 8000 to the IP network At least two CAT 5 cables are required one for each Ethernet Switch board More cables are needed i...

Page 93: ...h TP 8410 boards provide two cables for connecting E1 T1 trunks to each TP 8410 board one with the 100 pin SCSI connector and another with the 68 pin SCSI connector Note E1 T1 cables are not supplied...

Page 94: ...03 Annex NAB Outlets DC outlets are required for connecting the Mediant 8000 For more information see Power System on page 41 Circuit breaker To meet the system power HA scheme the system should not b...

Page 95: ...4 F 4 1 2 Thermal Shock 40 C to 25 C 158 F to 77 F within 5 minutes 4 1 1 1 4 1 1 2 Normal Range Humidity 5 to 90 4 1 2 Nominal Relative Humidity 70 wet bulb 4 1 2 Altitude 60 to 3048 m 10 000 ft 4 1...

Page 96: ...nnecting the Media Gateway to the IP Network on page 178 and Appendix Examples of IP Network Connectivity Configuration on page 877 Verify the configuration of the IP network available on the site and...

Page 97: ...ming maintenance tasks Global IP Address for SC boards 1 A Global SC address is assigned to the Active SC board and used by EMS or any other management server for connecting to the Mediant 8000 manage...

Page 98: ...inks have the following multiplexing hierarchy VC12 for SDH VT1 5 for SONET 4 Investigate APS Automatic Protection Switching capabilities of the connected STM 1 OC 3 PSTN equipment 5 Investigate the c...

Page 99: ...nnect earthing contacts to the ground Connect the Mediant 8000 to power sources and power it up 16 1 Unpacking Checking Contents The Mediant 8000 configured and populated as per the customer s order i...

Page 100: ...flow required for safe operation on the equipment is not compromised Mechanical Loading Mounting of the equipment in the rack should be such that a hazardous condition is not caused due to uneven mech...

Page 101: ...on 2 While the two people are holding the chassis in place a third person fastens the chassis to the rack rails using eight screws not provided four on each side of the chassis or as appropriate for y...

Page 102: ...earth connection s resistance must not be greater than 0 1 ohm Earthing lugs and screws are supplied with the chassis To earth the chassis Locate two pairs of the earthing connectors on the PEM modul...

Page 103: ...by lightning surges installation of equipment should be compatible with Class 3 classification as defined by EN61000 4 5 Annex B which specifies that the surge level may not exceed 2kV 16 5 Powering U...

Page 104: ...bottom rear of the chassis see the figure above and provide redundant power input terminal blocks for DC Each terminal block must be connected to a separate power source to guarantee redundancy of the...

Page 105: ...overs from the terminal blocks 3 Use two insulated crimp terminal tongues for stud size for making the connections to the terminal block supplied with the Mediant 8000 Prepare the two connections usin...

Page 106: ...EM protective plastic cover with the secured Hex spacers and fasten the screws as illustrated in the figure below Figure 16 5 Secure the PEM Plastic Cover Screws Note The plastic covers spacers and sc...

Page 107: ...t breakers set to I One is enough to power up the chassis Table 16 1 PEM LED Functional Unit Indicator Indicator Status Description PEM PEM Ready Green The PEM is correctly receiving power from the ba...

Page 108: ...Installation Operation Manual 108 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 109: ...LI via an RS 232 Serial Console Connection to the CLI via RS 232 serial console is typically needed when IP connectivity with the Mediant 8000 is not available e g during initial installation A regula...

Page 110: ...232 serial port or the serial port on the SA RTM 2 If you are using a PC run the terminal client software and choose the serial port where the RS 232 cable is connected Figure 17 1 Using PuTTY for RS...

Page 111: ...Version 6 6 111 October 2014 Installation Operation Manual 17 The Command Line Interface CLI Figure 17 2 PuTTY RS 232 Serial Connection Settings...

Page 112: ...e CLI interface on a specific SC board use the corresponding corresponding SC board s private IP address 17 2 1 Connecting to the CLI via Secure Shell SSH The SSH software is not available on Windows...

Page 113: ...user may not be deleted however its password may be modified CLI administrators this group of users should be used for performing regular Mediant 8000 maintenance and configuration tasks the root user...

Page 114: ...lation Use it to perform most maintenance and configuration tasks Note however that the acladmin is a regular CLI administrator user and therefore may be deleted and other CLI users may be created ins...

Page 115: ...ver that the following advanced security features may affect the CLI user s ability to log in CLI Interface Access Control see Section CLI Interface Access Control on page 389 for details Password les...

Page 116: ...nstallation Operation Manual 116 Document LTRT 92224 Mediant 8000 client238 su root Password Note Do not omit the dash from the su root command otherwise root user environment will be improperly set u...

Page 117: ...undant IP network connection for the Mediant 8000 and therefore should not be used for live deployments For an initial installation of the Mediant 8000 in a customer environment an IP subnet that does...

Page 118: ...previous configuration of SC boards Note All IP addresses and hostnames in the following examples are for demonstration purposes only and must be designated by the customer according to the network s...

Page 119: ...5 Uninstall the software 0 Quit Choose 0 5 1 This option will change IP parameters of current SC board Note On SC boards with v5 6 or earlier software version installed the install command may produc...

Page 120: ...dated etc nodename Updated etc defaultrouter Updated etc hostname dmfe0 Updated etc netmasks Updated hostname Done 12 The SC board must be rebooted to activate the new configuration To reboot the SC b...

Page 121: ...twork connectors are located on the ES RTM modules in the rear of the Mediant 8000 chassis See ES 6600 RTM Rear Transition Module on page 78 and ES ACS 38 SINGLE ES Ethernet Switch Board on page 80 fo...

Page 122: ...e IP Network on page 178 for detailed instructions on how to perform the advanced IP network configuration e g define interface separation and or VLAN tagging As part of this advanced configuration yo...

Page 123: ...Do NOT stare directly into the beam as this can damage your eyesight 19 1 Connecting STM 1 OC 3 PSTN Cables The following parts are needed to connect the STM 1 OC 3 PSTN cables to the TP 6310 boards...

Page 124: ...interface redundancy it is recommended to connect two STM 1 OC 3 links to each 6310 RTM module Care in Handling Fiber Optic Cabling When handling the fiber optic cables be sure to note the following E...

Page 125: ...RTM module Use a proper cable with MOLEX PN 73100 0255 or the equivalent mini SMB male connector Figure 19 2 T3 Male Connector MOLEX PN 73100 0255 19 3 Connecting E1 T1 PSTN Cables TP 8410 Boards E1...

Page 126: ...Installation Operation Manual 126 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 127: ...auge of 20 AWG for standard copper wire may be used To connect the contact relays to Telco alarm equipment 1 Open the screws that connect the terminal block to the PCB s connector 2 Unplug the termina...

Page 128: ...Installation Operation Manual 128 Document LTRT 92224 Mediant 8000 Figure 20 2 Inverse Logic External Alarm Equipment Connection 4 Plug in the terminal block into the PCB connector...

Page 129: ...he Ethernet Switch boards and distributing the proper software and configuration files to them The Mediant 8000 is typically supplied with the proper software pre installed on it Therefore most custom...

Page 130: ...ation package for SC Rev 2 boards The Mediant 5000 Mediant 8000 System Software Installation CD also contains additional documentation and software utilities The Mediant 8000 software must be installe...

Page 131: ...e SFTP SCP protocols instead due to weak security features of FTP protocol that expose username and passwords in clear text You can use any standard compliant SFTP SCP FTP client software to transfer...

Page 132: ...em are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system is prohibited and could be sub...

Page 133: ...mation see Section Command Line Interface on page 107 2 Login as a regular CLI user e g acladmin and provide the corresponding password For more information see Section Logging into Command Line Inter...

Page 134: ...e 107 2 Login as root user For more information see Section Logging in as a Root User on page 115 3 At the prompt type install acladmin tg_6 6 16_linux install and press Enter Replace acladmin with th...

Page 135: ...xtracted SC board must be configured to complete the installation Choose one of the following configuration options a configure now you will be prompted to perform a new SC configuration b copy config...

Page 136: ...figuration Software installation will fail if these parameters do not match the IP addresses currently configured on both SC boards If you wish to change the private IP address of an SC board see Conf...

Page 137: ...he Linux OS the Enable Security prompt does not appear as the software always operate in a Secure Mode See Secure Operation Mode on page 306 for details 12 At the SC Root Password prompt enter the new...

Page 138: ...installation successfully completes the SC software configuration it will determine whether OS Patches need to be installed on the specific SC board OS patches installation ensures that the latest op...

Page 139: ...Gateway software on both SC boards do not reboot the SC board in slot 1 until the installation of the SC board in slot 2 is completed REBOOT now y n y y Are you sure y n y y If you install the softwar...

Page 140: ...e 115 3 At the prompt type install acladmin tg_6 6 16_linux install and press Enter Replace acladmin with the name of the CLI user that you used while transferring the Mediant 8000 package to the SC b...

Page 141: ...n Choose one of the following configuration options a configure now you will be prompted to perform a new SC configuration b copy configuration an existing SC configuration will be copied from another...

Page 142: ...be prompted to enter the IP address of the Active SC board or the board to operate as the Active board if you install software on both SC boards Enter the corresponding IP address and press Enter Acti...

Page 143: ...o the REBOOT now prompt on its CLI interface wait for 2 minutes until the Active SC board completes the reboot and re try copying the configuration 12 You are prompted to start configuring To commence...

Page 144: ...ly a few minutes 14 After the installation successfully completes you will be prompted to reboot the SC board SC board must be rebooted to complete the installation After the reboot do the following 1...

Page 145: ...ect to its CLI interface and login as a regular CLI user that you used to transfer the installation package e g acladmin Type the rm tg_6 6 16_linux install command to remove the Mediant 8000 installa...

Page 146: ...y matches the current network configuration of the SC boards The basic configuration of the Mediant 8000 software is typically carried out when the Mediant 8000 is moved to the new IP environment Comm...

Page 147: ...o perform the basic configuration of the Mediant 8000 software on the SC board to operate as the Active board in Slot 1 1 Connect to the CLI interface on the SC board to operate as the Active board in...

Page 148: ...he Basic IP Network Parameters of SC Boards on page 117 8 At the Time Zone prompt enter the local time zone where the Media Gateway resides The time zone may be specified as an offset from the Greenwi...

Page 149: ...rules when specifying a new root password Password must have at least 8 characters Password must contain at least two alphabetic characters and at least one numeric or special character In this case a...

Page 150: ...y and pressing Enter on the respective SC board s CLI interfaces 14 The SC board reboots It typically takes 2 minutes to complete the reboot process The Media Gateway software starts automatically aft...

Page 151: ...10 7 13 91 10 7 13 91 Verify that Active SC 10 7 13 91 responds to ping 10 7 13 91 is alive Configuration will be copied from Active SC 10 7 13 91 via SSH 6 At the CLI user name prompt enter the name...

Page 152: ...fter the configuration successfully completes you are prompted to reboot the SC board SC board must be rebooted to complete the re configuration IMPORTANT If you re configure the Media Gateway softwar...

Page 153: ...1 Connect to the CLI interface on the specific SC board For more information refer to Command Line Interface on page 107 2 Login as a regular CLI user e g acladmin For more information refer to Loggin...

Page 154: ...to Configuring Connectivity between Media Gateway and EMS Server on page 171 Once you have completed this configuration open the EMS client establish connection with the EMS server and verify that th...

Page 155: ...must be configured on the Mediant 8000 SS7 SIP MGC and vary for each deployment Nevertheless the following configuration tasks should be performed in most of the deployment scenarios Configuring IP n...

Page 156: ...Installation Operation Manual 156 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 157: ...Part III Configuring and Operating the Media Gateway Part 1 This part describe how to configure and operate the Media Gateway...

Page 158: ......

Page 159: ...ine interface Syslog interface 23 2 AudioCodes Element Management System EMS The Mediant 8000 is typically accompanied by the AudioCodes Element Management System EMS that is used for managing the Med...

Page 160: ...xx 23 5 Syslog Management Interface In addition a Syslog management interface may be used to perform status monitoring For detailed information see Syslog Management Interface on page 175 23 6 Managed...

Page 161: ...shown above illustrates only a sample containing the most basic and widely used MOs The actual configuration typically contains hundreds of MOs representing different physical and logical resources 23...

Page 162: ...d to complete an unlock action In the intermediate state the Administrative State of the corresponding MO is unlocked however the Operational State of the MO is disabled As soon as the Media Gateway b...

Page 163: ...Operation Manual 23 Overview Figure 23 2 Graphical EMS Status Screen Figure 23 3 Textual EMS Status Screen For easy navigation the EMS GUI divides MOs into group types For example all security relate...

Page 164: ...select the MO name in the Navigation pane on the left and then select the MO instance in the corresponding status screen on the right by clicking on the corresponding drawing in graphical status scree...

Page 165: ...tribute may be configured at any time No specific state of the corresponding MO is enforced None Online The corresponding MO must be locked prior to altering the specific attribute Offline The father...

Page 166: ...Manual 166 Document LTRT 92224 Mediant 8000 3 In the settings screen configure parameters and click Apply to apply the new configuration Figure 23 5 EMS Configuration Pane Figure 23 6 Example Settings...

Page 167: ...Browser screen by default Events provides information about a specific event that occurred in the past and is not necessarily currently relevant to the system events are not cleared and therefore shou...

Page 168: ...Color Clear Green Indeterminate White Minor Yellow Warning Blue Major Orange Critical Red When an alarm is raised on the MO the severity attribute of the MO itself is updated accordingly In addition...

Page 169: ...Version 6 6 169 October 2014 Installation Operation Manual 23 Overview Figure 23 8 MOs in the EMS Color Ccoded according to their Severity...

Page 170: ...s screen that have colors other than Grey or Green When you select a specific component the Alarm Browser screen is updated to display Alarms and Events that are applicable for the specific component...

Page 171: ...d for all SNMP managers or alternatively configured for specific SNMP managers only 24 1 Configuring Connectivity between the Media Gateway and the EMS Server After initial Media Gateway software inst...

Page 172: ...SNMP mode prompt choose the SNMP management mode to be used by the Media Gateway SNMP Mode 0 SNMPv2 1 SNMPv3 2 SNMPv2 IPSEC 0 0 7 At the EMS Server IP Address prompt enter the IP address of the EMS s...

Page 173: ...authorize write operations performed by the EMS server and other SNMP managers Press Enter to leave current SNMP Write Community string unchanged Default value for SNMP Write Community string is priva...

Page 174: ...igure the EMS Server in exactly the same way Do it as follows If Media Gateway is already listed in the MG Tree right Click it and choose Details from the menu Otherwise add Media Gateway to the MG Tr...

Page 175: ...rmed as follows Up to two additional SNMP managers called NMS and OSS may be configured via the Media Gateway Management Settings configuration screen in the EMS For each server an IP address and trap...

Page 176: ...Installation Operation Manual 176 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 177: ...ormance monitoring tasks are not supported via the Syslog management interface use the SNMP or CLI interfaces instead Syslog messages generated by the Media Gateway are compliant with RFC 3164 They ha...

Page 178: ...he Configuration pane click Management Settings the Management Settings screen is displayed 3 Configure the following parameters External Syslog Server External Syslog Server IP Address External Syslo...

Page 179: ...the final one e g it will use one network interface only while final configuration may use multiple interfaces Configure IP network topology as described in Configuring Network Topology on page 182 De...

Page 180: ...to service Lock unlock actions must be performed on ES boards sequentially one at a time in the following order Lock the ES boards in both Slot 9 and 19 Unlock the ES board in Slot 9 and wait till it...

Page 181: ...lock esboard 9 Do you really want to lock moGW moSwitchBoard 9 y n y Performing lock action on moGW moSwitchBoard 9 OK lock esboard 19 Do you really want to lock moGW moSwitchBoard 19 y n y Performing...

Page 182: ...ue Enabled 1 indicates that the board is back in service SC 1 moGW show esboard 19 param OperationalState OperationalState Enabled 1 13 If after completing the above procedure there is still no networ...

Page 183: ...lt network configuration Or alternatively use different network segments that are dedicated to the transmission of a specific traffic type Each network segment subnet has its own address space e g the...

Page 184: ...security features For example users connected to the OAM subnet may not in any possible way examine or affect call control and or media traffic that flows in the separate subnets This prevents possib...

Page 185: ...diant 8000 must be connected to each relevant subnet existing on site Connection details depend on the amount of available subnets and the type of their separation In the simplest default configuratio...

Page 186: ...onal subnet separation on CM network interface is possible via the use of VLAN tagging Three O C M three network interfaces are used each one dedicated to a corresponding traffic type OAM management C...

Page 187: ...s and then unlock the Media Gateway as described in Activating New Network Interfaces Configuration on page 214 To configure IP Network Interfaces 1 Click to access the Media Gateway status screen 2 L...

Page 188: ...AN ID tag The VLAN ID may be generated by the end station and carried in the Ethernet frame itself Or alternatively it may be assigned by the Layer 3 switch based on the port used 26 2 5 1 Using Tagge...

Page 189: ...only and doesn t affect SC boards The Media and Control Subnets VLAN Tags table is used to configure Media and Control VLAN Tagging The Media and Control Subnets VLAN tags configuration is handled dif...

Page 190: ...f future network To configure VLAN Tags for Media and Control Subnets for ES 2 1 Click to access the Media Gateway status screen 2 In the Navigation pane click Networking and then in the configuration...

Page 191: ...vailability A properly designed link aggregation scheme will prevent the failure of any single component link from disrupting communication between the interconnected devices For the Mediant 8000 this...

Page 192: ...is rule is not recommended for use since source MAC addresses of Media Gateway boards may not be controlled by the user and may not be evenly distributed Destination MAC packets are distributed based...

Page 193: ...sec which is determined by the Link Aggregation Timeout configuration parameter Note This protocol is only supported for the ES 6600 switch not for the ES 2 switch 26 2 6 4 Aggregated Link Failure De...

Page 194: ...the Network Settings screen is displayed 3 In the Interfaces and VLAN Settings tab configure the link aggregation parameter as described in the table below Table 26 2 Media Link Aggregation Settings P...

Page 195: ...rce XOR Destination IP Online Defines rules for traffic distribution across aggregated links Aggregation Distribution Rule For ES 2 Enum Source MAC Destination MAC Source XOR Destination MAC Source IP...

Page 196: ...the private IP addresses of each SC board See Configuring the Basic IP Network Parameters of SC Boards on page 117 for details Configuring the global virtual IP address for SC boards this step config...

Page 197: ...management subnet segment SC1 and SC2 IP Addresses private IP addresses of the SC boards located in Slots 1 and 2 correspondingly in this additional OAM management subnet segment Global IP Address glo...

Page 198: ...e complicated IP network architectures different segments subnets may be used to transmit different types of traffic as described below OAM Subnet used to transmit management traffic e g SNMP CLI SSH...

Page 199: ...played 5 Configure the Subnet properties according to the Subnet Properties table below Table 26 3 Subnet Properties Parameter Name Type Provisioning Type Description Subnet Name String Up to 16 chars...

Page 200: ...rations that may be assigned to one or more Media Gateway board This set consists of the following One or more Subnets to which the specific Media Gateway board is connected Quality Of Service QoS set...

Page 201: ...oS settings as described in Quality of Service on page 206 26 4 2 2 Attaching IP Network Profile to the Media Gateway Board A newly created IP Network Profile must be attached to the corresponding Med...

Page 202: ...elect the desired Media Gateway board 3 In the Actions bar click Lock to stop the service on the Media Gateway board 4 In the Navigation pane click Networking and then in the configuration pane click...

Page 203: ...ng the corresponding configuration objects Note When the Mediant 8000 wishes to send an IP packet it scans the static routes table starting from the lowest index the first entry that matches the IP pa...

Page 204: ...e Gateway IP Address to which packets to the destination entity will be routed Comment String Up to 200 chars Instant Defines the user defined comment for specific static route 26 5 1 2 Static Routes...

Page 205: ...tic route applies Destination IP Address String Up to 40 chars Instant Defines the IP Address of the destination entity Destination Prefix Length Integer 0 128 Instant Defines the Prefix Length of the...

Page 206: ...Mediant 8000 Very Low Very Low N A Network Communications between network devices within one administrative domain The following Mediant 8000 management protocols belong to this category ICMP DNS NTP...

Page 207: ...ffic based on the Priority header Packets with a higher priority value will be processed prior to packets with a lower priority within the same VLAN Note Ethernet Frame Priority Header configuration w...

Page 208: ...creen and configure parameters in the Quality Of Service tab For Media and Control subnets open the Network Profile s configuration screen and configure parameters in the Quality Of Service tab Table...

Page 209: ...Description Premium Control Priority Integer 0 7 Online Defines Layer 2 Class Of Service as per IEEE 802 1P for the Premium service class applied to call control traffic Premium Control Diffserv Inte...

Page 210: ...e and configure the IPv6 Default Gateway parameter 3 Attach the IP Network Profile to the Media Gateway boards and configure the Media Gateway Board s IPv6 addresses as described in Attaching IP Netwo...

Page 211: ...ad Only Indicates name of the IPv6 Subnet associated with this Realm Port Range Start Integer 1 60000 Offline Defines the starting port for the range of Media Subnet UDP ports Value 1 defines Media Re...

Page 212: ...ransmit DNS requests after this number of retries the gateway attempts to connect to the secondary DNS server IP ARP Aging Enum Disable Enable Instant Defines whether the aging mechanism is applied to...

Page 213: ...translation for RTP RTCP and T 38 packets When enabled the device compares the source IP address of the first incoming packet to the remote IP address stated in the opening of the channel If the two...

Page 214: ...when lock and unlock maintenance actions are performed on both Ethernet Switch ES boards Users who modify the affected configuration will be forced to perform lock unlock of the ES boards prior to unl...

Page 215: ...e connection with the chassis is lost until the user configures the external Switch Route with the new VLAN ID While both ES are locked 1 Lock the ES boards in both slots 9 and 19 2 Configure the OAM...

Page 216: ...board in slot 9 completes the restart This may take up to 10 minutes When the ES board returns to service its Operational State is changed to Enabled and the board s color is changed to Green in the...

Page 217: ...cation on ES 6600 Boards Interface Separation ES boards Ports Allocation One OCM default configuration Use Port 20 for connection to the IP network If Link Aggregation is enabled use Ports 21 and 22 f...

Page 218: ...hat carries Call Control and Media traffic If Link Aggregation is enabled use Port 21 and for additional connection to the LAN network Three O LAN WAN Use Port 18 for connection to the OAM management...

Page 219: ...trol network Use Port 3 for connection to the Media network If Link Aggregation is enabled use Ports 4 and 5 for additional connection to the Media network Two O CM Use Port 1 for connection to the OA...

Page 220: ...AN Use Port 1 for connection to the OAM management network Use Port 2 for connection to the LAN network that carries Call Control and Media traffic Use Port 5 for connection to the WAN network that ca...

Page 221: ...available Ethernet Switch ES boards located in slots 9 and 19 must be connected to a corresponding external Layer 3 Switch or Router as shown in the figure below Ensure that you connect all relevant...

Page 222: ...00 This configuration ensures the proper Layer 3 switches activity switchover in case of a switch failure When the priority is properly set and both external Layer 3 switches are up the switch with th...

Page 223: ...s All management operations configuration fault and status monitoring are performed through the SC boards See the System Controller SC Board for a detailed description of the SC board s hardware 27 1...

Page 224: ...y attributes When the SC board is functioning properly its Operational State is set to Enabled Severity is set to Clear and in the EMS the SC board is colored green When the SC board s functionality i...

Page 225: ...ring locked SC board back to service SC board is rebooted during the unlock action and it may take up to 5 minutes before it returns back to service 27 4 SC Board Hardware Revisions The following hard...

Page 226: ...e on SC boards will be dealt with as a malicious action and reported as a Security Alarm since it may potentially affect the normal operation of the Mediant 8000 software see File System Integrity Che...

Page 227: ...is important to use the Solaris OS installation image that is provided by AudioCodes 27 6 1 Verifying the Current Version of the Solaris OS on the SC Board Version 6 6 of the Mediant 8000 software re...

Page 228: ...n the SA RTM must also be in place behind the SC board during the installation process 27 6 3 Preparing the Install Image on the Install Server EMS Prior to installing the Solaris OS on the SC board f...

Page 229: ...ogin as the root user the default password is root 3 Type ifconfig a and press Enter to identify the SC hostname IP address and MAC address of the SC board Sample values are shown in red in the exampl...

Page 230: ...232 console terminal connected to the SC board and at the prompt type boot net install and press Enter Make sure to separate each word with a space ok boot net install The Solaris 9 OS installation t...

Page 231: ...SC boards it is important to use the Linux OS installation image provided by AudioCodes 27 7 1 Verifying the Current Version of the Linux OS on the SC Board Version 6 6 of the Mediant 8000 software r...

Page 232: ...damaged Network connection to the SC board via SSH is required OS re installation via the RS 232 console The OS is re installed from a local copy of the OS installation image that was created during t...

Page 233: ...tion via SSH The Linux OS will be re installed from a local copy of the OS installation image that was created during the initial OS installation on the SC board and is stored on a hidden partition Th...

Page 234: ...re connect to the SC board when the Linux OS re installation has completed After Linux OS re installation only the following 2 users will remain on the SC board 1 acladmin 2 root When Linux OS re inst...

Page 235: ...f the OS installation image that was created during the initial OS installation on the SC board and is stored on a hidden partition An RS 232 serial console connection to the SC board is required to p...

Page 236: ...roceed with the installation press any key To abort the installation reboot SC board now 6 At the warning prompt press any key to proceed with the re installation 7 The re installation will take appro...

Page 237: ...e information see Command Line Interface on page 107 2 Login as the root user For more information see Section Logging in as a Root User on page 115 3 To change the default password for acladmin user...

Page 238: ...nstallation from the USB Flash Drive via the RS 232 serial console An empty 1 GB or larger USB Flash Drive to be provided by the customer is required to perform this type of OS installation The drive...

Page 239: ...m and press Start to start the formatting Figure 27 2 Format New Volume 4 When the formatting has completed insert Linux OS for SC Board CD ROM into the CD DVD drive on your Windows PC 5 Open My Compu...

Page 240: ...he drive letter that corresponds to the CD DVD drive where Linux OS for SC Board CD ROM is inserted 8 In the USB Drive combo box choose the drive letter that corresponds to the USB Flash Drive 9 Press...

Page 241: ...32 Serial Console see Command Line Interface on page 107 3 Restart the SC board by pressing the hidden Reset pin located on the SC board s front panel or by extracting and re inserting the SC board in...

Page 242: ...ic mode The installation progress will be reported on the RS 232 serial console as follows Package Installation Name parted 1 8 1 23 el5 i386 Size 1354k Summary The GNU disk partition manipulation pro...

Page 243: ...enter the new password To change the default password for root user type passwd root and enter the new password 4 To configure the SC board s IP network parameter at the prompt type network config and...

Page 244: ...bootable USB Flash Drive a USB CD DVD drive to be provided by the customer may be used to perform the Linux OS installation on the SC board The installation instructions for both mechanisms are very...

Page 245: ...the chassis mid plane and redundant RTM Depending on the configuration this activity switchover may or may not affect established calls To restore High Availability you must attend to the failed Medi...

Page 246: ...roperly its Operational State is set to Enabled Severity is set to Clear and in the EMS the board is colored green When the Media Gateway board s functionality is degraded an alarm indicating the prob...

Page 247: ...on of TP 6310 and TP 8410 boards is not supported A combination of OC 3 STM 1 and T3 boards is supported however multiple Redundancy Groups may be required to provide high availability for all boards...

Page 248: ...ly Make Board Redundant makes a regular Media Gateway board into the Redundant board For more information see Section Configuring Redundant Media Gateway Board on page 249 Make Board Non Redundant mak...

Page 249: ...a new Redundant board After changing the configuration of the active boards to ensure the availability of the best possible Redundancy Mode for all boards To configure the Redundant Media Gateway boar...

Page 250: ...uption Both channel capacity and active calls connection is preserved Warm Redundancy The Media Gateway board is only partially backed up by the Redundant board When a Media Gateway board fails or a u...

Page 251: ...dancy Groups list is displayed 3 Select a specific row and then in the configuration pane click Redundancy Group Settings the Redundancy Group Settings screen is displayed 4 Set Redundancy Mode parame...

Page 252: ...tches in Hardware and Application Types of normal and redundant Media Gateway boards Mismatch in the Hardware and or Application Types of normal and redundant Media Gateway boards may degrade Actual R...

Page 253: ...Redundancy mode for all Media Gateway boards to ensure that the system is configured to provide proper protection in case of board failure To view the redundancy mode for all Media Gateway boards 1 C...

Page 254: ...another board the failed board is automatically restarted Service is typically restored on the failed board when it completes the restart When the Media Gateway board fails and then there is an activi...

Page 255: ...us screen 2 In the Navigation pane select Redundancy Redundancy Groups the Redundancy Groups list is displayed 3 Use the or buttons to add or remove entries 4 Select a specific row and then in the con...

Page 256: ...ndant Board In Use Enum Unused Used Read Only Indicates whether the Redundant board is currently used for back up of a specific normal board Failed Board Integer 1 19 Read Only Indicates the number of...

Page 257: ...cy Group Integer 0 3 Instant Indicates the Redundancy Group to which this Media Gateway board is associated Actual HA Mode Enum None Hot Warm Read Only Indicates the actual level of protection provide...

Page 258: ...avigation pane select Redundancy Redundancy Groups the Redundancy Groups list is displayed 3 Select a specific row and then in the configuration pane click Redundancy Group Settings the Redundancy Gro...

Page 259: ...c customer order However customers may upgrade the License Key in the future to gain access to additional functionality e g to increase the amount of available MTP2 SS7 links To upgrade the License Ke...

Page 260: ...The newly added License Key file is applied 6 Repeat this procedure for all of the Media Gateway boards that require the License Key update If multiple Media Gateway boards in the chassis require Lic...

Page 261: ...Link interconnects between the two ES boards and provides internal communications between the boards inside the chassis 29 2 ES Boards in the EMS In the EMS the Active ES board is colored black and th...

Page 262: ...the chassis Media Gateway boards and SC boards to use a specific ES board When performed on the Standby ES board it causes the ES boards activity switchover Clear Severity clears Minor severity on th...

Page 263: ...Part IV Configuring and Operating the Media Gateway Part 2 This part describes the configuration and operation of the Media Gateway...

Page 264: ......

Page 265: ...lient and has the following capabilities Version 4 of the NTP protocol as as per the latest draft available at NTP Server http www ntp org is implemented Backward compatible with Version 3 of the NTP...

Page 266: ...ections 30 3 Using External NTP Servers In the field deployments it is recommended to use external NTP server s as a time and date synchronization source for the Media Gateway and EMS server For redun...

Page 267: ...ver as an NTP server reference source in the NTP Servers table change the Administrative State of the EMS server entry EMS server s IP address to Locked for more information see Section NTP Synchroniz...

Page 268: ...erver uses two Stratum 2 NTP servers as its NTP clock source and the Media Gateway also uses two Stratum 2 NTP servers as its NTP clock source Therefore when this setup option is used both the EMS and...

Page 269: ...that due to the nature of the NTP protocol implementation there may be a significant lag in the update of the Operational State and the NTP Server Status attributes For example when the NTP server is...

Page 270: ...rnal NTP servers and the EMS server They also operate as NTP servers for VoP boards inside the chassis providing time and date synchronization to the latter Peer connection between the SC boards ensur...

Page 271: ...select Unlock to activate the configuration 7 Repeat steps 4 6 for additional external NTP Servers that are available Note The NTP Servers List always contains the EMS server as its first entry You ma...

Page 272: ...nt LTRT 92224 Mediant 8000 Parameter Name Type Provisioning Type Description Prefer Mode ENUM yes no Online Prefer this NTP Server to others NTP Version INTEGER 3 4 Default 4 Read Only NTP Version num...

Page 273: ...er Read Only Indicates the status of the connectivity between the Media Gateway and the NTP server The following values are supported Reject server is discarded due to high stratum and or failed sanit...

Page 274: ...o the nearest power of 2 Reachability String Read Only Shift register of 8 bits used to determine the reachability status of the peer with bits entering from the least significant rightmost end A peer...

Page 275: ...ronized the value is zero Originate Timestamp String Read Only Local time in timestamp format at the peer when its latest NTP message was sent If the peer becomes unreachable the value is set to zero...

Page 276: ...Installation Operation Manual 276 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 277: ...ontrol protocols When the MEGACO protocol is used the Media Gateway board may be divided into Virtual Gateways Each Virtual Gateway may be associated with a different MGC entity See MEGACO Virtual Gat...

Page 278: ...nts In addition the Call Agent can instruct the endpoints to detect certain events and generate signals The endpoints automatically communicate changes in service state to the Call Agent Also the Call...

Page 279: ...y Call Agent IP address Redundant DNS servers may be configured as an alternative means of FQDN name resolution 31 4 2 Via IP Addresses If the MGC is to be addressed via IP addresses you must provisio...

Page 280: ...TS The pattern should contain two additional asterisk characters to be substituted by Trunk and Channel accordingly TGW T3 Trunk TS The pattern should contain three additional asterisk characters to...

Page 281: ...mber of Termination can be controlled via the MEGACO RTP Term Offset parameter 31 5 2 1 Example 1 Phys Term Name Pattern ds e1 Include Board Index no Phys Termination Type TGW Trunk TS Trunk Offset 1...

Page 282: ...name If the criteria above is not met the configured FQDN name is used as domain name 31 7 MEGACO Virtual Gateways The Mediant 8000 supports MEGACO Virtual Gateway functionality as defined in the H 2...

Page 283: ...t contains a list of E1 T1 trunks and a numeric Virtual Gateway Index that is used to associate MGC IP FQDN addresses with the specific Virtual Gateway By default for each Media Gateway board a single...

Page 284: ...al load VGW with higher values process more messages The priority is applicable between VGW with different network configuration port transport type realm Media Realm Integer 0 16 Online Defines the d...

Page 285: ...Controller s Administrative state will be updated as follows If at least one associated Media Gateway board is unlocked MGC is unlocked If all associated Media Gateway boards are locked MGC is locked...

Page 286: ...Defines the redundant FQDN name of the Media Gateway Controller Applicable to the MGCP call control protocol only Table 31 5 Media Gateway Controller Endpoint Names Parameters Parameter Name Type Pro...

Page 287: ...N Address parameters according to the table below Table 31 6 MGC IP FQDN Address Parameters Parameter Name Type Provisioning Type Description Address Format Enum IPv4 0 DNS 2 Online Defines the format...

Page 288: ...irtual GW that represents Media Gateway board as a whole For MGCP protocol leave it at its default 1 to associate the MGC with the default Virtual GW that represents the Media Gateway board as a whole...

Page 289: ...rameter Name Type Provisioning Type Description Board FQDN String Up to 40 chars Online Defines the FQDN name of the Media Gateway board If the FQDN name is empty or equals none the IP address of the...

Page 290: ...s the H 248 2 TDM endpoints connection mode Disable connect two TDM terminations through internal IP loopback In this mode 2 DSP are used and channels will be opened with the default coder and default...

Page 291: ...rated on a per board basis DLCX by GW Enum Enable Disable Instant This parameter applies to MGCP only Enables a Delete connection DLCX message from the media gateway side Disconnect On Broken Connecti...

Page 292: ...Installation Operation Manual 292 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 293: ...dancy Model for details V5 2 Links each TP 8410 board features 42 E1 trunks that may be configured as V5 2 links or as E1 transparent trunks without voice e g for PSTN clock synchronization V5 2 Inter...

Page 294: ...rt the service on the specific V5 2 Interface Interface Operational State indicates the actual service state on the V5 2 Interface valid values are Offline service is not provided due to local Offline...

Page 295: ...o be performed by the soft switch Link ID Check initiates the link identification check that ensures that there is no mismatch between the ends of the link the link s Link ID Check Status attribute is...

Page 296: ...e desired TP 8410 Media Gateway board 3 In the Navigation pane select Media and in the Configuration pane click Media Settings the Media Settings screen is displayed 4 The following Media Gateway boar...

Page 297: ...t is displayed 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click V5 2 Interface Settings the V5 2 Interface Settings screen is displayed 6 Confi...

Page 298: ...d 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click V5 2 Link Settings the V5 2 Link Settings screen is displayed 6 Configure V5 2 Link paramete...

Page 299: ...ht be either The Header or Version Line It is the first line in the file It describes the version number as follows 1 0 version A Comment Line It should start with and may be placed anywhere in the fi...

Page 300: ...field type a meaningful description f Click to add the configuration file to the list g Repeat steps c f if you have several V5 2 User Port configuration files h Click OK The files are uploaded to th...

Page 301: ...een will include the following Number of lines added Number of lines removed Number of lines duplicate Number of lines that don t exist c If the configuration file download fails the summary screen wi...

Page 302: ...Installation Operation Manual 302 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 303: ...Security for OAM management interfaces Secure Operation Mode Secure access to the SNMP interface via SNMPv3 and or SNMPv2 IPSEC Secure access to the CLI interface via SSH and SFTP SCP Disabled Remote...

Page 304: ...igure 33 1 Security Features Each security feature addresses a specific threat For example SNMPv3 protects the management interface and SRTP provides security for the media traffic To enable proper Me...

Page 305: ...ting the call control traffic and implementing the appropriate security measurements and network level e g by using firewalls See Configuring IPSEC IKE for Call Control and Signaling Interfaces on TP...

Page 306: ...on the SC Rev 2 boards using the Linux OS For SC Rev 1 boards using the Solaris OS use the procedures described in the following sections to enable disable Secure Operation mode Note The Secure Mode i...

Page 307: ...ore information see Section Logging in as a Root User on page 115 3 To stop Media Gateway software on both SC boards on each SC board at the prompt type tools sc dn and press Enter When prompted to co...

Page 308: ...the following SNMP operational modes SNMPv2 a simple default management mode widely deployed in many closed networks has a relatively weak security model based on the plain text read and write commun...

Page 309: ...connection type for the CLI management interface 33 4 2 SCP and SFTP Protocols Secure Copy SCP and Secure FTP SFTP are associated protocols that support files transfer over SSH connections They are us...

Page 310: ...nformation see Section Logging in as a Root User on page 115 3 At the prompt type tools user and press Enter 4 At the Choose submenu prompt type remote_root_login and press Enter client238 tools user...

Page 311: ...Remote Root Login on page 310 however at the Enable Disable Remote root Login prompt type disable and press Enter 33 6 OS Hardening The Mediant 8000 software automatically performs hardening of the Op...

Page 312: ...urity patches are considered to be part of theMediant 8000 software and therefore are typically deployed via the regular software installation and or upgrade procedures Use of the matching versions of...

Page 313: ...o the SC Boards on page 130 The package will be transferred to the home directory of the logged in CLI user e g acladmin 3 Connect to the CLI interface on the Standby SC board For more information see...

Page 314: ...e use the following commands to start the Mediant 8000 software installation rm f os_patch chmod u x acladmin tg_6 6 32 install acladmin tg_6 6 32 install os_patch 7 When you are prompted if you wish...

Page 315: ...undle The OS security patch bundle is a special installation package that contains only the latest OS security patches without the core Mediant 8000 software and is provided on customer request Instal...

Page 316: ...th binary and configuration files Media Gateway software periodically scans file system and compares it against the snapshot When unauthorized modifications are detected a notification alarm is sent t...

Page 317: ...to the file system are detected the File System Integrity Status attribute of the corresponding SC board is changed to failure and the Integrity Unauthorized Files attribute is updated with the list o...

Page 318: ...rformed on a daily basis By default the check is run at 2 00 AM however a user may modify this time to match the period when the amount of the traffic being served by the Media Gateway is low To set t...

Page 319: ...ied from the uncompromised SC board After completing either of these options you must acknowledge the file deletion by providing the directory name to the tools fs ack command see below When modified...

Page 320: ...tions to detect malicious intent The problem is to determine which events generate plausible information and which events generate negligible information that are so common that they clutter the audit...

Page 321: ...board contains its own audit trail data 33 9 3 1 Analyzing the Audit Trail File on the Solaris OS The following basic tools provided by the Solaris OS may be used to analyze the audit trail files on S...

Page 322: ...neration of a complete audit summary report as shown above may take a few minutes To speed up the report generation process use ts and te options as described below to generate report for a specific p...

Page 323: ...from one application s system call have the same event ID As one application s system call may trigger several events to be logged you are likely to retrieve more than one record from the log ausearc...

Page 324: ...root euid root suid root fsuid root egid root sgid root fsgid root tty pts5 ses 1041 comm chmod exe bin chmod key null type PATH msg audit 08 09 2009 16 24 35 019 202009 item 0 name etc audit audit ru...

Page 325: ...ation and the public key belong together CAs are organized in a structured hierarchical system that represents the trust relationships between them Each party has a list of Trusted Root Certificates c...

Page 326: ...stallation of the Media Gateway software the Private Key and Self Signed Certificate files are automatically generated added to the Auxiliary Files repository and configured in the Media Gateway secur...

Page 327: ...raged You should instead establish PKI infrastructure and use certificates signed by the genuine CAs Refer to the sections described below for detailed instructions When Self Signed Certificates are u...

Page 328: ...o be used for generating the Self Signed Certificate 6 In the Self Signed Certificate field enter a name of the new Self Signed Certificate file 7 Click OK A new self signed certificate file is genera...

Page 329: ...digitally signed with the Private Key of the Certificate Authority This certificate file together with the certificate of the CA itself must be added to the Media Gateway Auxiliary Files repository an...

Page 330: ...ialog is displayed 4 Select the CSR button 5 Select a Private Key to apply to the Certificate Signing Request 6 In the Subject field enter a brief description of the Certificate Signing Request 7 Clic...

Page 331: ...ee Section the section Auxiliary Files Repository on page 422 33 10 5 Activating the new X 509 Certificates on the Media Gateway Once certificate files are added to the Auxiliary Files repository take...

Page 332: ...d by the CA or by the entity itself CA Certificate File String Instant X 509 Certificate of the CA that issued the Certificate File This optional parameter is used to validate the Certificate file 1 s...

Page 333: ...party certificate matches one of the Trusted Roots remote party certificate is accepted When new X 509 certificates are configured for the Media Gateway they are not immediately applied to the Media G...

Page 334: ...o the VoP Boards Synchronized with the Media Gateway Configuration list After you complete configuration of the new X 509 Files in the Media Gateway Security Settings tab all Media Gateway boards are...

Page 335: ...edia Gateway boards Select Board apply new X 509 configuration to the specific Media Gateway board if you select this option choose the specific board from the drop down list Figure 33 3 Activating X...

Page 336: ...everity is issued When you see this alarm contact CA immediately for a new identity certificate When the certificate actually expires an alarm with error severity is issued You may configure the amoun...

Page 337: ...ayed 3 Click the Maintenance Actions in the top right corner and select the Generate X 509 Files option The Generate X 509 Files dialog is displayed 4 Select Private Key 5 In the Private Key field ent...

Page 338: ...ion status of X 509 certificates To configure this functionality use the following parameters located in the OCSP Settings tab of the Media Gateway Security Settings screen Table 33 5 OCSP Server Sett...

Page 339: ...n IPSEC supports the following two modes of operation Transport mode used for host to host communication e g for communication between the Media Gateway and the EMS server encrypts the payload of the...

Page 340: ...able on SC Rev 2 Linux OS based boards only 33 11 2 For Call Control and Signaling Interfaces on TP boards This section describes the Call Control and Signaling Interfaces on TP boards 33 11 2 1 IKE P...

Page 341: ...esents an IKE proposal a set of encryption and authentication protocols used for specific SC IPSEC Rule up to 4 proposals may be configured for each rule When IPSEC IKE associations are configured for...

Page 342: ...SC IPSEC Rules Settings screen is displayed 5 Configure the SC IPSEC Rule parameters according to the table below Table 33 7 SC IPSEC Rule Parameters SC Boards Parameter Name Type Provisioning Type D...

Page 343: ...n SC Rev 2 Linux OS based boards only Preshared Key String Up to 100 chars Online Defines the Pre Shared Key in ASCII format Applicable for Preshared Key authentication mode only Once provisioned the...

Page 344: ...T T is negotiated When NAT T is in charge all ESP and AH packets of a given connection are encapsulated into UDP datagrams port 4500 by default On NAT T is used when a NAT gateway is detected between...

Page 345: ...on SC Rev 2 Linux OS based boards only Encryption Enum DES 3DES AES Online Defines the encryption algorithm for IPSEC and IKE SAs AES encryption algorithm is supported on SC Rev 2 Linux OS based boar...

Page 346: ...posals is used by all TP IPSEC Rules To add and configure TP IPSEC Profile 1 Click to access the Media Gateway status screen 2 In the Navigation pane select Security TP IPSEC Profiles the TP IPSEC Pro...

Page 347: ...vice Applicable for Tunnel mode only Remote Subnet Prefix Length Integer 0 128 Online Defines the prefix length of the Remote Subnet IP Address Applicable for Tunnel mode only Local Port Integer 0 655...

Page 348: ...E Proposal Settings screen is displayed 5 Configure the TP IKE Proposal parameters according to the table below Table 33 11 TP IKE Proposal Parameters Parameter Name Type Provisioning Type Description...

Page 349: ...Mediant 8000 Supported transports SSL 2 0 SSL 3 0 TLS 1 0 Supported ciphers DES RC4 compatible Authentication X 509 certificates To enable SIP over SSL TLS for a specific Media Gateway board 1 Click...

Page 350: ...y is enabled by default when TGCP call control is configured by setting Call Control Compatibility Profile to 32 in the Media Gateway Controller configuration screen and DSP Load File Version to 3 in...

Page 351: ...splayed 8 Set the DSP Template Number parameter to 0 7 or 9 Table 33 12 Media Gateway Board s Media Security SRTP Settings Parameter Name Type Provisioning Type Description Enable Media Security Enum...

Page 352: ...ssage authentication with a 80 bit tag 2 AES_CM_128_HMAC_ SHA1_32 device uses AES CM encryption with a 128 bit key and HMAC SHA1 message authentication with a 32 bit tag 4 ARIA_128_HMAC_SHA 1_32 devic...

Page 353: ...nd an action is performed a packet is dropped or accepted By default each Firewall Profile contains the following rules Default rules that allow communication with SC board and Redundant Media Gateway...

Page 354: ...iate the Firewall Profiles with a specific Media Gateway board 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 In the Actions bar click Lock to stop the se...

Page 355: ...e incoming IP packet The parameters Source IP and NetMask provide the mechanism for filtering packets from a specific network host or network segment subnet Net Mask String Up to 20 chars Instant Defi...

Page 356: ...5535 Instant Defines the maximum packet size of incoming traffic Default value 0 implies any size Byte Rate Integer 0 2147483647 Instant Defines the maximum byte rate of incoming traffic Default value...

Page 357: ...pment e g Firewalls accordingly Table 33 14 Network Services Service Name IP Address and Port Description SSH Port 22 Global and private IP addresses of SC boards Used for accessing Mediant 8000 Comma...

Page 358: ...to the same password as that of the root user WARNING The EEPROM password should be used with caution It may not be changed reset from the OpenBoot PROM level Therefore if a user forgets the EEPROM p...

Page 359: ...orget the trailing equal sign 4 At the New Password prompt type the new password and retype it at the Re enter password prompt client238 eeprom security password Changing PROM password New password pa...

Page 360: ...e SC board For more information see Section The Command Line Interface CLI on page 107 2 Login as root user For more information see Section Logging in as a Root User on page 115 3 At the prompt type...

Page 361: ...LI interface on both SC boards See Synchronizing the CLI Users Database with the EMS Server on page 367 Local CLI Users Database Synchronized with the EMS server information is stored locally on SC bo...

Page 362: ...ment e g RADIUS server The root user may not be deleted and its password will never expire The root user s password should be changed under the following circumstances During the Mediant 8000 software...

Page 363: ...At the Choose submenu prompt type pwd and press Enter Choose submenu pwd CHANGE USER PASSWORD 5 At the User Name prompt type root and press Enter User Name root 6 At the New Password prompt type the...

Page 364: ...ting to the CLI via an RS 232 Serial Console on page 109 2 Drop SC board to the OBP level ok prompt by pressing the following 3 key sequence ENTER Ctrl B The keys must be pressed one after another The...

Page 365: ...ing the Media Gateway in a production environment 33 18 3 1 Changing the Password of the EMS User The password of the ems user on the Media Gateway should be changed periodically for enhanced security...

Page 366: ...Password prompt type the new password again Re enter new Password The new password is configured on the Active SC board and immediately replicated to the Standby SC board Therefore there is no need to...

Page 367: ...ctivity between the Media Gateway and the EMS server e g in case of a network failure Figure 33 5 Synchronizing CLI Users Database with EMS Server 33 18 4 1 Synchronization Modes When the CLI Users Da...

Page 368: ...LI USERS WITH EMS menu appears SYNCHRONIZE CLI USERS WITH EMS enable_block ENABLE BLOCK MODE Synchronize CLI and EMS users databases Block access to CLI for users with expired credentials enable_7days...

Page 369: ...r on page 367 for details Also ensure that external user authentication is disabled see chapter Centralized RADIUS Servers on page 384 Figure 33 6 Local CLI Users Database on SC Boards When the Media...

Page 370: ...pt type tools user and press Enter The CLI USERS MANAGEMENT menu appears client238 tools user CLI USERS MANAGEMENT list LIST list CLI users add ADD add user del DELETE delete user pwd PASSWORD change...

Page 371: ...ng the password change time interval type 0 Prevent too often password changes 0 no number of days 1 Note For improved security it is strongly recommended to limit password changes to not more than 1...

Page 372: ...er CLI USERS MANAGEMENT list LIST list CLI users add ADD add user del DELETE delete user pwd PASSWORD change user password copy COPY copy users passwords from other SC lock LOCK lock user unlock UNLOC...

Page 373: ...CLI users database is always replicated from Active SC board to the Standby SC board Therefore ensure that you change CLI user s password on Active SC board only To change the password of a CLI user...

Page 374: ...hanges prompt type the minimum interval between password changes number of days For not limiting the password change time interval type 0 Prevent too often password changes 0 no number of days 1 Note...

Page 375: ...ation interfaces and not via the tools user or passwd CLI commands 33 18 6 1 Centralized TACACS Servers Terminal Access Controller Access Control System Plus TACACS is a AAA protocol developed by Cisc...

Page 376: ...interfaces and su command Authorization for all Media Gateway specific CLI commands e g show tpCmd tools Accounting for all user activity on the Media Gateway CLI interface i e both for Media Gateway...

Page 377: ...o supports the interworking with TACACS servers See the LTRT XXXX EMS User Manual for detailed information Figure 33 7 Working with Centralized TACACS Servers 33 18 6 1 2 Working With TACACS Server Us...

Page 378: ...in the Mediant 8000 CLI interface Authorization and Accounting requests are sent towards the TACACS server Authorization Request is sent for all Media Gateway specific CLI commands e g show or tpCmd h...

Page 379: ...server may do so by configuring the parameter Skip AAA Validation For Special Users to Disabled as described in the following sections 33 18 6 1 5 Configuring Media Gateway to Work With TACACS Server...

Page 380: ...user authentication TACACS centralized TACACS servers are used for CLI user authentication authorization and accounting Table 33 16 AAA Server Settings Parameter Name Type Provisioning Type Descriptio...

Page 381: ...y active TACACS server prior to falling back to the redundant server Note that the actual failed server detection time is typically much lower e g failure in TCP IP connection establishment typically...

Page 382: ...ork outage 33 18 6 1 6 Sample TACACS Server Configuration Use the following sample TACACS server configuration file as a reference when deploying the Mediant 8000 in your network environment The file...

Page 383: ...vl 15 user ems CLI administrator privilege level permit all commands user ems default service permit pap cleartext pass_1234 service exec priv lvl 1 user john CLI administrator privilege level permit...

Page 384: ...rview The Mediant 8000 implements the authentication and authorization parts of the RADIUS protocol as defined in RFC 2865 Authorization is implemented using Audiocodes vendor specific attributes VSAs...

Page 385: ...not on the RADIUS servers thus additionally simplifying Mediant 8000 emergency maintenance EMS management application also supports user authentication using centralized RADIUS servers Its implementa...

Page 386: ...level 1 15 administrator level 33 18 6 2 3 Configuring the Media Gateway to Work With RADIUS Servers This section describes how to configure the Media Gateway to Work With RADIUS servers To configure...

Page 387: ...eout in seconds between RADIUS requests retransmissions RADIUS Auth Number Of Retries Integer 1 100 Instant Defines the number of retransmission attempts for each RADIUS server AAA Active Server Integ...

Page 388: ...ts configuration file client 10 7 9 231 secret 1234567890 shortname M8K_SC1 client 10 7 9 232 secret 1234567890 shortname M8K_SC2 dictionary AudioCodes VSA dictionary VENDOR AudioCodes 5003 ATTRIBUTE...

Page 389: ...ction configure the CLI Interface Access Control parameters according to the table below Table 33 19 CLI Interface Access Control Parameters Parameter Name Type Provisioning Type Description CLI Acces...

Page 390: ...ey for authentication RSA keys are generally considered to be stronger than DSA keys Therefore if your SSH client application supports both authentication mechanisms it is recommended to generate RSA...

Page 391: ...ompt For an empty passphrase press Enter Enter passphrase empty for no passphrase Enter same passphrase again 5 Finally ssh keygen will confirm the completion and creation of the private public key fi...

Page 392: ...ser Authorization implies that the SSH client that uses the private key will be granted credentials and access permission of the specific CLI user To transfer the generated public key file to the Acti...

Page 393: ...d to the Active SC board and press Enter Enter public key filename id_rsa pub id_rsa pub 6 The public key will be parsed and keys from it will be added to the authorized keys list You will be informed...

Page 394: ...procedures do not work refer to your SSH client documentation If you use standard Linux UNIX command line SSH client software 1 Log in to your client machine with the same credentials username passwo...

Page 395: ...eration Manual 33 Configuring Security Settings 3 In Connection Data specify the CLI user name for auto login Figure 33 13 PuTTY Configuration Auto login 4 In Session enter Global IP address choose SS...

Page 396: ...user Note however that there are some limitations to this approach Passwords may not be disabled for root and ems users who are utilized by the EMS server Passwords may be disabled only when the Sync...

Page 397: ...ter Choose submenu disable DISABLE CLI USER 5 At the User Name prompt enter the name of the user who you wish to disable and press Enter User Name acladmin The password is deleted for the specified us...

Page 398: ...cted In certain environments an Intrusion Detection Event may be issued for normal activity e g there may be some automated network scanner that periodically tries to access the Media Gateway with inc...

Page 399: ...Frozen Media Gateway includes the following indication at the top of the status screen in the EMS To freeze Media Gateway configuration 1 Click to access the Media Gateway status screen 2 In the Navig...

Page 400: ...Installation Operation Manual 400 Document LTRT 92224 Mediant 8000 This page is left intentionally blank...

Page 401: ...generated it can be applied to the Media Gateway and then polling can be activated on this entity 34 2 Real Time PMs Real time PMs are polled at a high rate typically every 5 seconds and are used to...

Page 402: ...When polling is activated via this screen only History statistics are collected To generate Performance Monitoring Profiles 1 Click to access the Media Gateway status screen 2 Select the relevant Med...

Page 403: ...Group are displayed in the right pane 6 In the Parameters List right click the Parameter group and check all parameters for the group or individually check the desired parameters from the selected Par...

Page 404: ...parameter Trunk Utilization Avg it will be collected for all trunks on all Media Gateway boards 11 When you have completed performance monitoring click the Stop Polling button to stop parameter s pol...

Page 405: ...formance Measurements 1 Click to access the Media Gateway status screen 2 Select the relevant Media Gateway entity for which you wish to display Real Time PMs For example select the Media Gateway boar...

Page 406: ...me Performance Measurement Display window is displayed Note if you selected more than one entry in an MO s list all of the selected entries are displayed in the Components pane Figure 34 5 Real Time P...

Page 407: ...and Counters 7 Select the parameters group for which you wish to display performance measurements e g MG IP All parameters for the selected Parameter Group are displayed 8 Check the desired parameters...

Page 408: ...to save the graph as an image by clicking the Save button in the left pane Historical data of the selected components and parameters can be viewed by clicking the History button and then defining the...

Page 409: ...ements you must define a PM profile For more information see Performance Monitoring Profiles on page 402 To view collected History Performance Measurements 1 Click to access the Media Gateway status s...

Page 410: ...one entry in an MO s list all of the selected entries are displayed in the Components pane Figure 34 8 History Performance Measurements Display 5 Click the button and select the components and parame...

Page 411: ...splays the summarized data Figure 34 9 History Performance Measurements Display Results Screen Each time a sample is taken from the Media Gateway it is stored in the details table After every 24 hours...

Page 412: ...sion critical performance measurement and receive immediate indication when a specific problem indicated by a change in corresponding PM value occurs To configure PM Threshold Alarms 1 Click to access...

Page 413: ...Threshold MO Enum Online Defines the MO to which the threshold is applied MG threshold is applied to all PM instances e g in case of a History PM parameter on Media GatewayMedia Gateway boards thresh...

Page 414: ...e Defines the low threshold value When the PM value drops below the low threshold the corresponding Threshold Alarm is cleared Alarm Severity Enum Warning Minor Major Critical Online Defines the sever...

Page 415: ...e components of the Media Gateway and their relevant data including serial numbers hardware and EEPROM versions and board IP addresses To view Media Gateway Inventory 1 Click to access the Media Gatew...

Page 416: ...Installation Operation Manual 416 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 417: ...Media Gateway Board s Configuration Backdoor you must receive the following information from AudioCodes Tech Support The parameter s ini file name The parameter s ini file value The parameter s ini fi...

Page 418: ...nd numbers e g 5 6 8 10 for slots 5 5 7 8 and 10 Value all to define the value for all boards Trunks IDs String Up to 40 chars Online Defines Trunks to which this backdoor parameter is applied Syntax...

Page 419: ...levant Media Gateway boards as soon as the Configuration Backdoor is unlocked TPReset backdoor requires the Media Gateway board to be reset lock unlock The reset in not automatically enforced and shou...

Page 420: ...or parameter affects more than one board a deleted board is removed from the Board IDs attribute s range except when the value range is defined as all Lock prepare the BackdoorConfiguration for remova...

Page 421: ...Defined Tones to be detected generated by the Media Gateway board Yes Pre Recorded Tones PRT Provides more flexible tone generation capability than the CPT mechanisms which have limitations such as l...

Page 422: ...ype a meaningful description f Do the same for any additional file type you require g Click OK the files are uploaded to the EMS 37 2 Call Progress Tones CPT Files Call Progress Tones CPT files contai...

Page 423: ...e Setup Files tab 5 In the Setup Files tab configure Call Progress Setup File parameter to match the desired CPT file 37 2 1 Modifying the Source Call Progress Tones CPT File This section describes sy...

Page 424: ...rameter defines the tone On event detection time When a tone is configured to be burst tone it defines the tone s duration First Signal Off Time 10 msec The Signal Off period in 10 msec units for the...

Page 425: ...e frequency should differ by at least 40 Hz from one tone to other defined tones 37 2 1 2 The User Defined Tones Section Format In the source Call Progress Tones file the User Defined Tones section st...

Page 426: ...Number of Call Progress Tones 9 Dial tone CALL PROGRESS TONE 0 Tone Type 1 Tone Form 1 Continuous Low Freq Hz 350 High Freq Hz 440 Low Freq Level dBm 13 13dBm High Freq Level dBm 13 First Signal On T...

Page 427: ...f Time 10msec 50 Busy CALL PROGRESS TONE 5 Tone Type 3 Tone Form 2 Cadence Low Freq Hz 440 High Freq Hz 0 Low Freq Level dBm 20 20dBm High Freq Level dBm 0 First Signal On Time 10msec 50 First Signal...

Page 428: ...e provided on the Media Gateway software installation CD as a reference Modify the section according to your specific needs For example to change the dial tone to 440 Hz only replace the Dial tone sec...

Page 429: ...nd path of both the CPT ini file and the dat file appear in the Using File field and Output File field respectively The file names and paths are identical except for the file extension 4 Fill in the V...

Page 430: ...allows recording only part of the tone while still playing it for the full duration For example if a tone has a cadence of 2 seconds on and 4 seconds off the recorded file should contain only the 6 se...

Page 431: ...g the DConvert utility provided on the Media Gateway Software Installation CD To create Pre Recorded Tones file 1 Execute DConvert exe and click the Process Prerecorded Tones file s button the Prereco...

Page 432: ...e file or group of files to be set the same and double click or right Click it the File Date window is displayed Figure 37 3 File Data Dialog Box 4 From the Type drop down list select a Ring parameter...

Page 433: ...ndicates that the process is completed 37 4 Voice Prompts Files The Voice Prompts file contains definitions of the Voice Prompts played by the Media Gateway board upon MGC request Individual Voice Pro...

Page 434: ...one of these actions a Click the Add Files button in the upper right corner The Add Files window appears See the figure Select Files Window below Navigate to the appropriate file Select it and click...

Page 435: ...w with wav Files b From any location on the PC select the appropriate files and drag drop them into the Voice Prompts window 3 Arrange the files as desired by dragging and dropping them from one locat...

Page 436: ...selected from the wav file header 8 Close the File Data dialog by clicking on the Exit button Press the Esc key to cancel changes You are returned to the Voice Prompts window 9 The default Output file...

Page 437: ...eway to access the Media Gateway status screen 5 Select the desired Media Gateway board 6 In the Navigation pane select PSTN and in the Configuration pane click PSTN Settings The PSTN Settings screen...

Page 438: ...e or in the transition from one state to another The available functions include for example SET_TIMER timer number timeout in ms and SEND_CAS AB value CD value A full list of the possible pre defined...

Page 439: ...t is processed by declaring end of digit reception in the following ways both for ADDRESS destination number and ANI source number Receiving digit in MF or DTMF The number of digits collected reaches...

Page 440: ...5 1 5 Reserved Words For reserved words such as DO NO_STATE refer to the CASSetup h file 37 5 1 6 State s Line Structure Each text line in the body of each state is composed of six columns Action Even...

Page 441: ...od Timer Oriented EV_TIMER_EXPIRED1 timer 1 that was previously set by table has expired EV_TIMER_EXPIRED2 timer 2 that was previously set by table has expired EV_TIMER_EXPIRED3 timer 3 that was previ...

Page 442: ...ed EV_MFRn_3_ STOPPED MF digit 3 previously detected is now stopped EV_MFRn_4_ STOPPED MF digit 4 previously detected is now stopped EV_MFRn_5_ STOPPED MF digit 5 previously detected is now stopped EV...

Page 443: ...IALED_NUM_DETECTED Incoming call dialed destination number is collected after START_COLLECT was previously activated and the condition for incoming_call_detected event is satisfied see ST_INIT for con...

Page 444: ...ation number is reported in the EV_INCOMING_CALL_DETECTED event STOP_COLLECT See START_COLLECT SET_COUNTER counter number counter value or NONE Set counters that are managed per B channel and their ex...

Page 445: ...n be taken from CASsetup h Stops sending the last parameter CHANGE_COLLECT_TYPE Collect Type Used only in MFCR2 protocol by the incoming user to indicate his waiting for the reception of the MF digit...

Page 446: ...locking unblocking a channel EV_MAKE_METERING_PULSE When starting the metering pulse while using the SET_PULSE_TIMER function to start the timer to get the Off event refer to the EV_METERING_TIMER_PUL...

Page 447: ...ed MFCR2 protocol related EV_MFRn_1 MF digit 1 is detected EV_MFRn_2 MF digit 2 is detected EV_MFRn_3 MF digit 3 is detected EV_MFRn_4 MF digit 4 is detected EV_MFRn_5 MF digit 5 is detected EV_MFRn_6...

Page 448: ...ed by the outgoing user MFCR2 protocols specifications should define what to do when no ANI digits are available Usually I 12 is sent Note MF digit is MF R1 or R2 FWD or R2 BWD according to the contex...

Page 449: ...ers the state machine table Each protocol table state machine can use up to 8 timers per B channel call timeout in msec SEND_CAS AB value CD value ABCD bits are sent as line signaling for the specific...

Page 450: ...lity parameter when a call is placed The second and third parameters have no use when using this type Index Specifies the Offset of the next digit to be sent from the vector ADDRESS or ANI types descr...

Page 451: ...nd waits for another action to come Reserved word DO must be written in the next state field if the unconditional actions FUNCTION0 at the beginning of the state are used 37 5 2 Converting CAS File to...

Page 452: ...the Table Name if desired 8 For troubleshooting purposes you can click a check into the Output state names to file checkbox This activates the file name field in which the default file name TableState...

Page 453: ...his section describes syntax of the text based source External Coders file This file must be converted to the binary format via the DConvert utility prior to uploading it to the Media Gateway The foll...

Page 454: ...ccording to RFC 3558 of a existing coder It was formerly called EVRC BV16 Supported for BCT only iLBC Supported for BCT only 37 6 1 2 Coders Support Level The application defines the following support...

Page 455: ...e Make File button A Browse window appears 3 Navigate to the desired location and select the file to be converted This automatically designates the output file as the same name and path but with the d...

Page 456: ...in which many different routing rules are required For example a city may have many different area codes some for local calls and others for long distance calls e g 425 202 xxxx for local calls howev...

Page 457: ...signed to a long distance Trunk Group 2 3 Configure phone number manipulation for local and long distance calls In this example you set two manipulation rules one for local calls and another for long...

Page 458: ...Installation Operation Manual 458 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 459: ...o access the Media Gateway status screen 2 Select the specific Media Gateway board 3 In the Navigation pane select PSTN and then in the configuration pane click PSTN Settings the PSTN Settings screen...

Page 460: ...nfiguring STM 1 OC 3 Interfaces Two redundant optical STM 1 OC 3 interfaces featuring automated protection switching APS are provided on each TP 6310 Media Gateway board for connecting to the SDH SONE...

Page 461: ...Figure 38 2 STM 1 PSTN Fiber Group Status Screen Figure 38 3 OC 3 PSTN Fiber Group Status Screen To configure the PSTN Fiber Group on a specific Media Gateway board 1 Access the TP 6310 Board Interfa...

Page 462: ...or non revertive behavior of the APS protection mode In revertive mode when failed Link A returns to service activity is automatically switched back to it In non revertive mode the activity remains o...

Page 463: ...a Gateway board 1 Click to access the Media Gateway status screen 2 Select the specific Media Gateway board 3 In the Navigation pane select PSTN DS3 the DS3 Status screen is displayed Figure 38 4 DS3...

Page 464: ...ts for DS3 interface 38 3 1 Channelized T3 In channelized T3 configuration T3 interfaces are carried inside the OC 3 SONET optical links Up to three T3 trunks can be channelized To configure channeliz...

Page 465: ...ocated at the back of the Mediant 8000 chassis For additional details see TP 8410 Media Gateway Board on page 52 For TP 6310 Media Gateway s E1 T1 trunks are confined inside the STM 1 OC3 optical link...

Page 466: ...d on the E1 T1 Trunk and are available in EMS when you right click the specific trunk in the E1 T1 Trunks Status screen Lock take the trunk out of service and allow modification of its configuration a...

Page 467: ...described in Connecting to the PSTN Network on page 122 Change the configuration of the E1 T1 trunks to match the configuration on the remote PSTN side and unlock all the E1 T1 trunks that are actual...

Page 468: ...T1 Raw CAS T1 Transparent E1 Transparent 31 E1 Transparent 30 E1 MFC R2 E1 CAS R2 E1 Raw CAS T1 NI2 ISDN T1 4ESS ISDN T1 5ESS 9 ISDN T1 5ESS 10 ISDN T1 DMS100 ISDN J1 Transparent T1 NTT ISDN E1 Austel...

Page 469: ...g F72 T1 Framing ESF CRC6 JT Online Defines the trunk s framing method that should match the chosen Protocol Type Trace Level Type Enum Line Build Out Loss Enum 0 db 7 5 db 15 db 22 5 db Instant Defin...

Page 470: ...e 38 6 Trunk Channels Status Screen Each row in the Trunk Channels Status screen consists of the following elements Trunk number Icon that represents the operational status of each trunk Trunk name Tr...

Page 471: ...Color Disabled Grey Active Green RAI Yellow AIS Blue D Channel Alarm Orange LOS LOF Red Each trunk channel is represented by an icon that is color coded according to the channel status and configurati...

Page 472: ...ements over bidirectional channels called signaling data links Signaling occurs out of band on dedicated channels rather than in band on voice channels Each signaling point node in the SS7 network is...

Page 473: ...ignaling messages such as ISUP and SCCP messages between SG and MGC 38 6 2 Supported SS7 Architectures The SS7 subsystem may be configured to support different SS7 network architectures This flexibili...

Page 474: ...per Media Gateway board 38 6 2 2 SS7 MTP3 M3UA Architecture The Mediant 8000 is physically connected to the SS7 network It processes MTP3 payload and sends upper application layers to the SoftSwitch...

Page 475: ...3 SS7 M2TN Tunneling Architecture M2TN tunneling is used for transferring MTP2 signaling link over IP network while both sides of the link are pure TDM sources which are unaware of the IP tandem that...

Page 476: ...N network a Click to access the Media Gateway status screen b Select the desired Media Gateway board c In the Navigation pane select PSTN SS7 SS7 Data Links the SS7 Data Links list is displayed d Use...

Page 477: ...ay Status screen b Select the specific Media Gateway board c If the Media Gateway board is not already unlocked unlock it by clicking Unlock in the Actions bar Wait until the board completes the resta...

Page 478: ...GC side application define the Layer 2 type as M2UA For the broadband SS7 UMTS application define the Layer 2 type as SAAL Layer 2 Variant Enum Itu Ansi Online Defines the national variant of the Laye...

Page 479: ...levant for Layer2Type MTP2 only Defines the ID of the MTP2Profile that contains timers and basic MTP2 layer configuration for specific SS7 Data Link Multiple SS7 Data Links may use the same MTP2 Profi...

Page 480: ...te side configuration typically the remote side is configured as an MGC and therefore UAL Group is configured as SG UAL Type Enum Iua M2ua M3ua M2tn Dua Online Defines the application type of UAL Grou...

Page 481: ...ne Relevant for UALType M3UA only Defines the national M3UA variant It must match configuration on the remote IP side Table 38 10 UAL Interface Properties Parameter Name Type Provisioning Type Descrip...

Page 482: ...eate provisioning type To modify them either lock the Media Gateway board or delete the SS7 Data Link and define a new one The M2UA entities in the UALInterface and SS7DataLink tables are linked one t...

Page 483: ...d Enum Basic 0 PCRC 1 Online Defines the error correction method Basic or Preventive Cyclic Retransmission Refer to ITU T Q 703 for details SUERM Threshold T Integer 0 255 Online Defines the Signal Un...

Page 484: ...imer T3 Refer to ITU T Q 703 for details Normal Proving Period T4n Integer 0 15000 Online Defines the Normal Proving Period T4n Refer to ITU T Q 703 for details Emergency Proving Period T4e Integer 0...

Page 485: ...UA messages based on their source point code and service indicator For example you may define that all M3UA messages from OPC 0xA will be routed to ASP 1 while messages from OPC 0xB will be routed to...

Page 486: ...n is displayed b In the SS7 Settings tab configure MTP3 Group parameter to match the the specific MTP3 Group as configured in the step 2 See Media Gateway Board s MTP3 M3UA Properties 5 Create a new S...

Page 487: ...S7 Linkset only a In the Navigation pane select the SS7 Linkset configured in step 7 b In the Navigation pane select the SS7 Linkset Links the SS7 Linkset Links list is displayed c Use the or buttons...

Page 488: ...s a Click to access the Media Gateway Status screen b Select the desired Media Gateway board c In the Navigation pane select PSTN SS7 M3UA Routing Groups the M3UA Routing Group list is displayed d Use...

Page 489: ...sive Unlock operation may fail if the configuration of some of the MTP3 entities is inconsistent If this occurs correct the configuration and repeat the operation Instead of performing the Recursive U...

Page 490: ...ely and easily Redundancy Mode Enum none dualCpu Online Defines the Redundancy mode For a simple configuration where only one Media Gateway board is associated with the MTP3 Group define the Redundanc...

Page 491: ...si China Offline Defines the international or national MTP3 variant Originating PC String Up to 20 chars Offline Defines the signaling point code of the SS7 Node It can be specified in numeric e g 15...

Page 492: ...application to which the ISUP messages are transferred For example to transfer an ISUP payload to the MGC via M3UA link define this parameter as UAL If the payload specific Layer 4 App equals none th...

Page 493: ...ts It is a pure binary number that may be stated in terms of zone 3 bits area network 8 bits and signaling point identification 3 bits numbers The China point code uses 24 bits and is incompatible wit...

Page 494: ...can contain any value between 0 and 255 The ITU point code uses 14 bits It is a pure binary number that may be stated in terms of zone 3 bits area network 8 bits and signaling point identification 3 b...

Page 495: ...ily identify it Half Board ID Enum TPM1 TPM2 Online Only relevant for TP 1610 boards Defines the ID of the Media Gateway board s CPU module in which the Routing Group is defined Must match the Half Bo...

Page 496: ...and is incompatible with both ANSI and ITU networks OPC 2 String Up to 20 chars Online Defines 2 nd filter Originating Point Code MTP3 messages that originate at specific point code will be associated...

Page 497: ...ilter is deactivated Service Indicator 4 Enum none 0 15 Online Defines the 4 th filter Service Indicator MTP3 messages that match a specific SI will be associated with this M3UA Routing Context The va...

Page 498: ...s SS7 Node SS7 Routeset SS7 Linkset and SS7 Data Link specific maintenance operations must be performed in the following order Unlock of SS7 Linkset and Routeset is not allowed when a SS7 Node is lock...

Page 499: ...ibuted across multiple Media Gateway boards The Signaling links can be defined on any of the Media Gateway boards that belong to the Redundant MTP3 Group Note Up to two Media Gateway boards can be att...

Page 500: ...atch the the specific MTP3 Group 4 For each Media Gateway board that is associated with the Redundant MTP3 Group define an internal point code a Click the button to access the Media Gateway status scr...

Page 501: ...layed f Configure SS7 Data Link properties according to the tables M2UA SS7 Data Link Properties Data Link General Info Tab and M2UA SS7 Data Link Properties Data Link MTP Tab Make sure to configure L...

Page 502: ...o perform a regular Unlock operation on all the newly added SS7 Data Links 10 In the Navigation pane select the the newly associated Media Gateway board a If the Media Gateway board is not already unl...

Page 503: ...configured via MTP2 Profile SS7 Node Timers and SS7 Linkset Timers By default a single instance of each profile entity is created and all MTP2 MTP3 entities are attached to it You can create addition...

Page 504: ...ew configuration by restarting the corresponding Media Gateway board via Lock and consequent Unlock maintenance actions for redundant configurations you must lock both Media Gateway boards that are as...

Page 505: ...e tunneling link ID 3 Crete and configure the UAL Group for the SCTP association between the Media Gateway boards a Click to access the Media Gateway status screen b Select the desired Media Gateway b...

Page 506: ...rify that the Operational State of all of the configured entities is Enabled This occurs only when the Media Gateway boards on both sides of the tunnel are enabled and their configurations fully match...

Page 507: ...nel D channel handles signaling at 16 kb s or 64 kb s depending on the service type The Mediant 8000 supports ISDN interworking function where signaling messages coming from the ISDN trunk are relayed...

Page 508: ...e Provisioning Type Description Q 931 Relay Mode Enum None Activate LAPD Messaging Q931 Relay To Host Layer 3 Is IUA Online Defines whether Q 931 relay mode is activated or not Q 931 relay is a new wa...

Page 509: ...nd then in the configuration pane click Trunk Settings the Trunk Settings screen is displayed 5 In the ISDN DPNSS and CAS tabs configure parameters according to the tables below Table 38 23 E1 T1 Trun...

Page 510: ...CCEPT A LAW RESTART INDICATION FORCED RESTART NS_ACCEPT_ANY_CAUSE ISDN Outgoing Calls Behavior Unsigned 0 4294967295 Online Defines ISDN Q 931 state machine behaviour for outgoing calls via a bitmap t...

Page 511: ...PRI USE E1 PRI START WITH B CHAN OOS CHAN ALLOC LOWEST CHAN ALLOC HIGHEST DPNSS Behavior Integer 0 2147483647 Online Defines ISDN Q 931 state machine behaviour via a bitmap that contains the following...

Page 512: ...guration CAS Setup Files CAS Delimiter Padding Enum Number Sign Asterisk Online Defines the digits string delimiter padding usage per trunk Number Sign default address string padding XXX where XXX is...

Page 513: ...e Change the Protocol Type parameter as follows For IUA application configure Trunk s Protocol Type as T1IUA or E1IUA For DUA application configure Trunk s Protocol Type as E1DUA f In the IDSN DPNSS t...

Page 514: ...played d In the DS1 Trunks List select a DS1 trunk and then in the configuration pane click Trunk Settings the Trunk Settings screen is displayed e In the IDSN DPNSS tab configure ISDN DPNSS trunk par...

Page 515: ...indicates the status of the D channel for a DUA application mirrors the status of the Trunk 38 7 5 Redundant Configuration The IUA DUA application is partially supported by the Media Gateway board re...

Page 516: ...ources connected to dual SA 1 RTMs for more information refer to Timing Module BITS Sync Clock Mode on page 519 Timing Module Line Sync mode all Media Gateway boards are synchronized by up to four ref...

Page 517: ...quipment 38 8 1 2 Configuring the Media Gateway Software This section describes how to configure the Standalone Board Sync Clock Mode To configure the Standalone Board Sync Clock Mode 1 Click to acces...

Page 518: ...Reference T3 E1 T1 trunks and their priorities 1 Open Media Gateway board s PSTN Settings configuration screen as described above 2 Select the Standalone Board Mode Settings tab The list of all Media...

Page 519: ...another source and continues using it as a reference clock for the whole Media Gateway Automatic failover of the BITS Generator clock source can be disabled by configuring the Selector Mode parameter...

Page 520: ...Module BITS Sync Clock Mode configurations 1 Click the button to access the Media Gateway status screen 2 In the Navigation pane select PSTN and then in the configuration pane click Clock Settings th...

Page 521: ...ference Validation Time Integer Instant Defines the validation time in seconds for reference clock 5 In the TM External IF Settings tab configure parameters as described in the table TM External IF Se...

Page 522: ...nks or E1 T1 T3 trunks connected to the specific Media Gateway boards Up to four clock reference source fiber links or trunks may be defined in the Mediant 8000 Media Gateway and one clock reference s...

Page 523: ...ard performs switchover and takes control over the OC 3 STM 1 links or T1 E1 T3 trunks that were connected to the failed board When the Timing module fails the redundant Timing module performs switcho...

Page 524: ...on and status parameters 6 Configure parameter for all physically connected clock reference sources as described in the table TM Line Sync Settings Parameters below 7 Right click the clock reference s...

Page 525: ...similar to the Standalone Board Sync mode To configure timing of the DS3 interface 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 In the Navigation pane s...

Page 526: ...Installation Operation Manual 526 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 527: ...ning Type Description Voice Volume Integer 32 31 Instant Defines the Voice Gain Control volume PCM Input Gain Integer 31 31 Instant Defines the PCM input gain RFC2833 Receive Payload Type Integer 96 1...

Page 528: ...eter sets the level for the received PSTN to IP signal Silence Suppression Enum Disable Enable Enable Without Adaptation Instant Silence Suppression is a method for conserving bandwidth on VoIP calls...

Page 529: ...syntax Transparent DTMF digits remain in the voice stream Relay DTMF Over RTP erase digits from the voice stream relay to remote using RFC 2833 syntax Echo Canceller Enum Disable Enable Instant Defin...

Page 530: ...o endpoints Smart Transcoding 0 Transcoding is selected according to channels configuration If two WB coders excluding FAX are configured RTP Sync is selected Otherwise TDM Transcoding is selected Def...

Page 531: ...nuation Intensity Integer 0 3 Instant Defines the acoustic echo suppressor signals identified as echo attenuation intensity Max ERL Threshold DB Integer 0 60 Instant Defines the acoustic echo suppress...

Page 532: ...factor influences the error ratio Jitter Buffer Optimization Factor Integer 0 13 Instant Defines the factor for dynamic Jitter Buffer frame error delay optimization RFC2833 Receive Payload type Integ...

Page 533: ...TCP Mean Tx Interval in milliseconds VQM Burst Threshold Integer 1 12 Online Defines excessive burst alert threshold for Voice Quality Monitoring VQM If set to 1 no alerts are issued VQM Delay Thresho...

Page 534: ...d Format Enum RTP ATM Instant Defines the voice payload format Table 39 3 Media Gateway Board s Fax Modem Settings Parameter Name Type Provisioning Type Description Enable Fax Modem Inband Network Det...

Page 535: ...load type Fax Relay Redundancy Depth Integer 0 2 Instant Defines the number of times that each T 38 fax relay payload is retransmitted to the network T38 Redundancy Depth Enum No Redundancy One Packet...

Page 536: ...packets from the internal network i e originating device Events Only CNG is detected on the originating side passes transparently to the remote side and fax session is started T 38 fax session starts...

Page 537: ...n the voice stream Relay currently not applicable Mute the caller ID signal is detected from the Tel PSTN side and then erased from the voice stream Default Caller ID Enum Bellcore 0 ETSI 1 NTT 2 Brit...

Page 538: ...efines the time interval in which RTP or T 38 No Op packets are sent in the case of silence no RTP T 38 traffic when No Op packet transmission is enabled No Op Payload Type Integer 96 127 Instant Defi...

Page 539: ...DSP Template 1 Click to access the Media Gateway status screen 2 In the Navigation Pane select Media DSP Templates the DSP Templates list is displayed 3 Use the or buttons to add or remove entries 4 S...

Page 540: ...etects the significant change in voice quality it sends a special command to the other side requesting the change in the coder rate The AMR coder rate policy is defined in the 3G specification 44 318...

Page 541: ...ined for a specific AMR Profile 5 Use the or buttons to add or remove entries 6 Select a specific row and then in the configuration pane click AMR Codec Policy Settings the AMR Policy Rule Settings sc...

Page 542: ...MR Codec Policy enabling user to easily identify it Current Rate Integer 0 8 Read Only Indicates the current AMR Rate Current Redundancy Level Integer 0 3 Read Only Indicates the current Redundancy Le...

Page 543: ...line Defines the new Frame Loss Ratio FLR threshold Upon successful Unlock action this value is copied to the Current Threshold parameter and applied to all related boards Hysteresis Integer 0 15 Onli...

Page 544: ...Installation Operation Manual 544 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 545: ...g SIP applications PSTN Gateway provides gateway functionality between the PSTN and IP networks IP to IP provides IP to IP call routing functionality SBC provides Session Border Controller SBC functio...

Page 546: ......

Page 547: ...ess or fully qualified domain name FQDN You can define up to six Proxy Sets each with a unique ID number and each containing up to five Proxy server addresses For each Proxy server address you can def...

Page 548: ...wap Retx 40 1 3 DNS Service Records SRV DNS Service Records SRV may be used to discover the SIP Proxy servers when their Proxy IP parameter contains a domain name See the parameter DNS Query Type in t...

Page 549: ...tant Defines the Home Proxy Domain Name If specified the name is used as Request URI in REGISTER INVITE and other SIP messages If not specified the Proxy IP address is used instead Is Trusted Proxy En...

Page 550: ...g table when Proxy servers are not available When the gateway falls back to the internal Tel to IP Routing table it continues scanning for a Proxy When the gateway locates an active Proxy it switches...

Page 551: ...Table send INVITE according to Routing Table Use Routing Table when Proxy Fails Enum No Yes Instant Defines SIP messages routing rules when SIP Proxy server fails No Gateway fallback is not used Yes I...

Page 552: ...on e g ProxyIP domain com an SRV query is performed The SRV query returns up to four Proxy host names and their weights The gateway then performs DNS A record queries for each Proxy host name accordin...

Page 553: ...Balancing mechanism Disable disable Proxy Load Balancing RoundRobin A list of all possible Proxy IP addresses is compiled This list includes all entries in the ProxyIP table after necessary DNS resolu...

Page 554: ...sends the requests in such a manner that each Proxy receives a percentage of the requests according to its assigned weight The Random Weights Load Balancing is not used in the following situations The...

Page 555: ...sent every Proxy Keep Alive Time If set to UsingRegister the SIP REGISTER message is sent every Registration Time Any response from the Proxy server either success 200 OK or failure 4xx response is co...

Page 556: ...tches back to the main Proxy whenever it is available Note to use Proxy Redundancy Mode enable keep alive with Proxy via Enable Proxy Keep Alive parameter Is Proxy Hot Swap Enum No Yes Instant Enables...

Page 557: ...CompareOnlyIP CompareIP_Port_TransportType Instant Classifies an IP call to a Proxy Set based either on its IP address or its IP address port and transport type 0 Compare only IP IP call classified to...

Page 558: ...on request is resent according to the parameters Re registration Timing and Registration Time For example if Re registration Timing 70 and Registration Time 3600 the Media Gateway resends its registra...

Page 559: ...resent if registration fails with 4xx or there is no response from the Proxy Registrar Registrar Name String Up to 49 chars Instant Defines the Registrar Domain Name If specified the name is used as...

Page 560: ...ecific endpoint account registration fails SIP 4xx or no response then this endpoint is set to out of service until a success response is received in a subsequent registration request When the registr...

Page 561: ...requests to the Proxy are sent with credentials calculated from the saved challenge If the Proxy doesn t accept the new request and sends another challenge instead the old challenge is replaced with...

Page 562: ...Proxy are sent with credentials calculated from the saved challenge If the Proxy doesn t accept the new request and sends another challenge instead the old challenge is replaced with the new one Authe...

Page 563: ...ype Provisioning Type Description Transport Type Enum UDP TCP TLS Instant Defines SIP messages transport type Enable SIPS Enum Disable Enable Instant Enables secured SIP SIPS connections over multiple...

Page 564: ...CP TLS two way authentication Enum Disable Enable Instant Defines the TLS PKI two way authentication option Disable gateway doesn t require client certificate Enable gateway when acting as a server fo...

Page 565: ...in dotted decimal notation format defined in the Outbound IP Routing table or Proxy Set table and rejects all other incoming calls In addition if a fully qualified domain name FQDN is defined in the r...

Page 566: ...V NAPTR Instant Enables the use of DNS Service Record SRV queries to discover Proxy servers Forking Handling Mode Enum Sequential ParallelHandling Instant Defines how the device reacts to forking of o...

Page 567: ...ented In scenarios such as session expires SDP negotiation is irrelevant and thus the origin field is not changed Even though some SIP devices don t follow this behavior and don t increment the origin...

Page 568: ...nt Defines the format of the URI in the P Asserted Identity and P Preferred Identity headers Disable sip Enable tel User Pho ne in URL Enum No Yes Instant Defines whether user phone string is included...

Page 569: ...num Disable Enable Instant Enables or disables the usage of the SIP Reason header RTP Only Mode Enum Disable TransmitAndReceive Transmit Only ReceiveOnly Instant Enables the device to start sending an...

Page 570: ...pe and Number Plan parameters are included in the Remote Party ID Header X Channel Header Enum Disable Enable Instant Defines whether X Channel header with trunk B channel information is added to the...

Page 571: ...if an additional request is sent The order of the reasons is as follows Q 850 Reason SIP Reason SIP Response code Upon receiving the final success or failure response the gateway searches for a Redir...

Page 572: ...ry User Header exists it is used instead of Diversion header Prefix to Redirect Number String Up to 8 chars Instant Defines a string Prefix that is added to the Redirect number which is received from...

Page 573: ...he endpoint If the registration is per Media Gatdeway board it is only the MAC address When the User Information mechanism is used the globally unique ID is the MAC address concatenated with the phone...

Page 574: ...ession timer updates Notes The gateway can receive session timer refreshes using both methods The UPDATE message used for session timer updates lacks the SDP body Prack Mode Enum Disabled Supported Re...

Page 575: ...r is used for the transmission from fax machines connected to the device located inside a Network Address Translation NAT Generally the firewall blocks T 38 and other packets received from the WAN unl...

Page 576: ...OK response to BYE using the proprietary SIP header X RTP Stat 0 Disable default 1 Enable The X RTP Stat header provides the following statistics Number of received and sent voice packets Number of re...

Page 577: ...t SipT1Rtx 500 and SipT2Rtx 4000 The first retransmission is sent after 500 msec The second retransmission is sent after 1000 2 500 msec The third retransmission is sent after 2000 2 1000 msec The fou...

Page 578: ...feature you must configure the Trunk Group IDs Add Trunk Id as Prefix Enum No Yes Instant Defines whether the Trunk ID is added as a prefix to the called number for Tel to IP calls If enabled the Tru...

Page 579: ...d therefore only 100 remains Notes Applicable only if number manipulation is performed after call routing for IP to Tel calls i e IP to TEL Routiung Mode is set to Route Before Map Similar operation o...

Page 580: ...If the timer expires the call is released Replace Calling With Redirect Number Enum Disable Enable Instant Enables replacing the calling number with the redirect number in ISDN to IP calls When such...

Page 581: ...within two minutes Max Allowed Packet Lost Integer 0 100 Instant Defines the p acket loss percentage at which the IP connection is considered a failure Max Allowed Delay Integer 0 10000 Instant Define...

Page 582: ...d while still in Alerting state Disable Send REFER with Replaces default Enable Send CANCEL and after a 487 response is received send REFER without Replaces Wait For Busy Time Integer 0 20000000 Insta...

Page 583: ...placement QSIG When a SIP REFER message is received the gateway performs a transfer by sending FACILITY messages to the PBX with the necessary information on the call s legs that are to be connected T...

Page 584: ...c the board dials the DTMF of the number referred from the Refer To header sip URI userpart If the hostpart of the Refer To sip URI contains the board s IP address and if the Trunk Group selected acco...

Page 585: ...a redirect number Call redirection information is typically used for Unified Messaging and voice mail services to identify the recipient of a message Do Not Copy Do not copy the number Copy After Man...

Page 586: ...rvice from PRI to SIP and vice versa Notes This feature is only supported for the QSIG and Euro ISDN PRI variants For EuroISDN it is only supported from TE user to NT network Held Timeout Sec Integer...

Page 587: ...ing Select the lowest available channel Always start at the lowest channel number in the Trunk Group and if that channel is not available select the next higher channel Cyclic Descending Select the ne...

Page 588: ...s not located or the channel is unavailable e g busy the device searches in ascending order for the next available channel in the Trunk Group If located the call is sent to that channel If all the cha...

Page 589: ...the Q 931 Setup message is set to 17 instead of 12345 Note When enabled this feature is applied after routing and manipulation on the source number i e just before sending to the Tel side Progress In...

Page 590: ...in response to an ISDN Alert or it sends a 183 Session Progress message with SDP in response to only the first received ISDN Proceeding or Progress message after a call is placed to PBX PSTN over the...

Page 591: ...if a Progress or an Alerting message with PI 1 or 8 is received from the ISDN the gateway opens a voice channel sends a 183 SDP or 180 SDP response but doesn t play a ringback tone to IP If PI 1 or 8...

Page 592: ...eived If 180 183 with SDP message is received the Board cuts through the voice channel and doesn t play RBT default Play According To Received Media The behaviour is similar to Play According to Early...

Page 593: ...eceive send and receive RTP packets 2 Transmit send RTP packets only RTCP XR Collection Server Enum Disable Enable Instant Determines the transport layer used for outgoing SIP dialogs initiated by the...

Page 594: ...failed Network Provided CPN set by network Play Busy Tone to Tel Enum Do Not Play Play When Disconnecting Play Before Disconnect Instant Enables the device to play a busy or reorder tone to the PSTN a...

Page 595: ...communicate with the proxy according to the Proxy Keep Alive mechanism and no other alternative route exists to send the call The IP Connectivity mechanism is enabled and there is no connectivity to a...

Page 596: ...teway initiates a call release If an explicit matching cause for this release isn t found a default release cause can be configured The default release cause is NO_ROUTE_TO_DESTINATION 3 Other common...

Page 597: ...going SIP messages If a trunk group number is not associated with the call the tgrp parameter isn t included If a tgrp value is specified in incoming messages it is ignored Send And Receive The functi...

Page 598: ...ehavior parameter see Trunk SIP Parameters Settings Enable CIC Enum No Yes Instant Defines whether Carrier Identification Code CIC is relayed to ISDN If enabled the CIC code received in an INVITE Requ...

Page 599: ...ssage is received the timer is restarted Send Metering to IP Enum Disable Enable Instant Enables sending of metering messages to IP on detection of metering pulses CAS Disconnect On Detection of Busy...

Page 600: ...lication isdn in the SIP messages IP Tunnel to ISDN Enum Disable Enable EnableByUsingBo dy Instant Enable ISDN Tunneling from IP side to Tel side When ISDN Tunneling is enabled the media server extrac...

Page 601: ...G 726 The static payload type 13 is used The use of CN is negotiated between sides Therefore if the remote side doesn t support CN it is not used Note Silence Suppression must be enabled to generate...

Page 602: ...t Cable Instant Defines whether the mptime attribute is included in the outgoing SDP The mptime attribute enables the gateway to define a separate packetization period for each negotiated coder in the...

Page 603: ...ax session using G 711 for last two options a gpmd attribute is added to the SDP in the following format For A law a gpmd 8 vbd yes ecan on For Mu law a gpmd 0 vbd yes ecan on Detect Fax on Answer Ton...

Page 604: ...ML identification string To start an MSCML session the application server sends a regular SIP INVITE message with a SIP URI that includes this string For example INVITE sip mscml 10 2 3 4 Subsequent I...

Page 605: ...ncement in the local Call Progress Tone file Conference ID String Up to 15 chars Instant Defines conference identification string To join a conference the INVITE URI must include the Conference ID str...

Page 606: ...lease Instant Defines when a RADIUS accounting report is issued Table 40 13 SIP Emergency Gateway Setting Parameter Name Type Provisioning Type Description Emergency Getway Mode Enum Disable Enable In...

Page 607: ...Unavailable 503 Call Priority Mode Enum Disable Emergency Instant Enables priority calls handling Disable Disable default Emergency Preemption of IP to Tel E911 emergency calls If the device receives...

Page 608: ...ed to IP Profiles in the IP Profiles table see Configuring IP Profiles In this setup they can be used as Extension coders and Allowed coders for the SBC application Note A specific coder can be select...

Page 609: ...tring annexb no in the SDP of the relevant SIP messages If silence suppression is set to Enable w o Adaptations annexb yes is included An exception to this logic is when the remote gateway is a Cisco...

Page 610: ...90ms t100ms t110ms t120ms t130ms t140ms t150ms Online Defines packetization time in milliseconds Determines how many coder payloads are combined into a single RTP packet If not specified the ptime get...

Page 611: ...the IP Group Table This section describes how to configure the IP Group Table To configure the IP Group Table 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the...

Page 612: ...oxy IP PBX or Application server is known USER represents a group of users such as IP phones and softphones where their location is dynamically obtained by the device when REGISTER requests and respon...

Page 613: ...his entry and a SIP request is sent to the destination The device also supports NAT traversal for the SIP clients that are behind a NAT In this case the device must be defined with a global IP address...

Page 614: ...ed to a USER type IP Group the device first forms the request URI destination_number SIPGroupN ame and then it searches the User s internal database for a match Serving IP Group Integer 1 Not Defined...

Page 615: ...he IP phones in Survivability mode always traverse through the device In Survivability mode the device is capable of receiving new registrations When the Serving IP Group is available again the device...

Page 616: ...for outgoing SIP INVITE messages Not Configured the routing is done according to the selected Serving IP Group If no Serving IP Group is selected the device routes the call according to the Tel to IP...

Page 617: ...erver is used and the parameter Always Send To Proxy is Disabled Routing Table uses the Routing table to locate the destination and then sends a new INVITE to this destination Notes When this paramete...

Page 618: ...s only if classification according to the device s database fails for locating whether the INVITE arrived from a registered user The classification proceeds with checking whether the INVITE s IP addre...

Page 619: ...sociatedURI PC alledPartyID Cont act Instant The source URI input used in the CMR Classify Manipulate Route process in SBC Defining source URI Request If REGISTER request use the TO header as the sour...

Page 620: ...hentication mode User Authenticates default The device does not handle the authentication however passes the authentication messages between the SIP user agents SBC Authenticates as client The device...

Page 621: ...SIP outgoing legs Contact Name String 299 char Instant Local Host Name If configured the gateway uses the Contact Name string in its Contact and Via headers as a host name It is used for working with...

Page 622: ...Serving IP Groups user name password Host Name and Contact User parameters 40 7 1 Configuring Account Group This section describes how to configure account groups To configure Account Groups 1 Click...

Page 623: ...sent or Authentication is performed The actual destination to where the REGISTER requests are sent is the IP address defined for the Proxy Set associated with this IP Group This occurs only in the fol...

Page 624: ...table upon a successful registration Notes The Trunk Group account registration is not effected by the parameter Is Register Needed You can configure this table so that a specific IP Group can registe...

Page 625: ...table 40 8 1 Configuring the Internal DNS Table This section describes how to configure the internal DNS table To configure the SIP routing DNS settings 1 Click to access the Media Gateway status scre...

Page 626: ...ternal SRV table is configured the Mediant 8000 initially attempts to resolve a domain name using this table If the domain name isn t found the Service Record SRV resolution is performed using an exte...

Page 627: ...Domain Name String Up to 70 chars Instant The host name to be translated Transport Type Enum UDP TCP TLS Instant Transport type of the SRV query DNS Name 1 2 3 String Up to 98 chars Instant Up to thre...

Page 628: ...ignaling traffic between different customers multiple gateway customers may reside either in the same or different Layer 3 networks as the device Once configured the following actions can be performed...

Page 629: ...Parameters Parameter Name Type Provisioning Type Description Name String Up to 20 chars Instant User defined name Textual assigned to the SRD enabling users to identify it intuitively and easily Media...

Page 630: ...2IP and SBC Separates signaling traffic of different customers to use different routing tables manipulations SIP definitions etc 40 11 1 Configuring the SIP Interfaces Table This section describes how...

Page 631: ...SAS application SBC Session Border Controller application UDP Port Integer 1 65534 Instant Defines the listening and source UDP port Note This port must be outside of the RTP port range TCP Port Integ...

Page 632: ...ble 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the Navigation Pane select SIP SIP General NAT Translation the NAT Translation list is displayed 4 Use the or...

Page 633: ...e identical costs then the rule appearing higher up in the table is used i e first matched rule If a selected route is unavailable the device selects the next least cost routing rule However even if a...

Page 634: ...ng Rule Groups list is displayed 4 Use the or buttons to add or remove entries Note only one can be added 5 Select a specific row and in the Configuration pane click SIP Routing Rule Group Frame the S...

Page 635: ...se the or buttons to add or remove entries Note only one can be added 5 Select a specific row and in the Configuration pane click SIP Cost Group Group Frame the SIP Cost Group screen is displayed 6 Co...

Page 636: ...Cost Group screen is displayed 6 Configure Time Band parameters according to the table Time Band Parameters below 7 Click the Maintenance icon and select Unlock to activate the configuration Time Ban...

Page 637: ...and vulnerabilities For example the attacker might try sending a SIP message containing either an oversized parameter or too many occurrences of a parameter Perform the following steps to configure th...

Page 638: ...d Rejection Enum PolicyReject PolicyDrop Instant Determines whether the device sends a 400 Bad Request response if a message request is rejected 0 Policy Reject If the message is a request then the de...

Page 639: ...user s availability presence and location The basic LDAP mechanism is described below Connection The device connects and binds to the remote LDAP server either during the service s initialization at...

Page 640: ...s This section describes how to configure the LDAP server Up to five LDAP servers can be configured Each Media Gateway SIP board can be associated with one LDAP server To configure the LDAP Servers Ta...

Page 641: ...Note The LDAP Server IP parameter takes precedence over this parameter Thus if you want to use an FQDN keep the LDAP Server IP parameter empty LDAP Search DN String Online Defines up to three search D...

Page 642: ...ile 3247647156 LDAPPrivateNumAttributeName Any attribute e g msRTCSIP PrivateLine Note Used only if set to same value as Primary or Secondary key msRTCSIP PrivateLine 3233554480 LDAPPrimaryKey Primary...

Page 643: ...routing rule based on query results of the PBX IP PBX number MSLDAPPBXNumAttributeName MOBILE MOBILE mobile_number used to match a routing rule based on query results of the mobile number MSLDAPMobile...

Page 644: ...Configure LDAP Query Attributes Table 40 25 Query Attribute Key Parameter Name Type Provisioning Type Description LDAP Server ENUM Offline This parameter associates VOIP Board with LDAP server A serve...

Page 645: ...configured by the LDAPSecondaryKey parameter 40 15 4 Configuring AD Based Routing Rules The procedure below describes how to configure Tel to IP routing based on LDAP queries To configure LDAP based T...

Page 646: ...en open the IP to IP routing table SIP SBC SBC Routing IP to IP Routing Table c Configure query result routing rules for each IP domain private PBX IP PBX Lync OCS clients and mobile using the LDAP ke...

Page 647: ...PRIVATE Dest Address 10 33 45 60 2 PBX Dest Address 10 33 45 65 3 OCS Dest Address 10 33 45 68 4 MOBILE Dest Address 10 33 45 100 5 LDAP_ERR Dest Address 10 33 45 80 6 LDAP 7 Dest Address 10 33 45 72...

Page 648: ...le to a busy line to all the relevant attribute destinations private Lync PBX and mobile and a relevant Tel to IP Release Reason see Alternative Routing for Tel to IP Calls or SBC Alternative Routing...

Page 649: ...ell as RTP to SRTP translations To enable IP to IP call routing functionality 1 Pre load the SIP boards with a License Key that enables the IP to IP feature See Updating License Key on page 259 for de...

Page 650: ...telephone numbers to the gateway s E1 T1 B channels Trunk Groups are used for routing IP to Tel calls with common rules Channels that are not defined are disabled 41 3 1 Configuring the Trunk Group Ta...

Page 651: ...l call is assigned to a trunk group the call is routed to the channel or channels that correspond to the trunk group ID You can configure the Trunk Group Settings table to determine the method in whic...

Page 652: ...rs and the phone number is defined for a range of channels e g 1 4 then the phone number must end with a number e g user1 Note This field is optional The logical numbers defined in this field are used...

Page 653: ...orrespondingly 5 Select a specific row and then in the configuration pane click SIP Trunk Groups Settings the SIP Trunk Groups Settings screen is displayed 6 Configure the Trunk Group Settings paramet...

Page 654: ...nding again Descending Select the highest available channel Always start at the highest channel number in the Trunk Group and if that channel is not available select the next lower channel Number Cycl...

Page 655: ...ts channel select method is according to the global parameter ChannelSelectMode Registration Mode Enum see description Instant Registration mode per Trunk Group Per Gateway Single registration for the...

Page 656: ...arameter to register Per Endpoint and a Trunk Group comprised of four channels is configured to register Per Gateway the media gateway registers all channels except the first four channels The Trunk G...

Page 657: ...configured the global parameter Gateway Name is used instead Contact User String Up to 50 chars Instant The string used as the user part in the Contact URI in INVITE messages and as a user part in Fro...

Page 658: ...s The Mediant 8000 can use a single global setting for NPI TON classification or it can use the setting in this table on a call by call basis Allow disallow Caller ID information to be sent according...

Page 659: ...und Manipulation Set Integer 1 Not Defined to 19 Instant Outbound manipulation set ID for GW If configured applies for all incoming INVITE requests To configure Calling Name Manipulation Table for IP...

Page 660: ...Up to 101 chars Instant Redirect Prefix Calling Name Prefix String Up to 101 chars Instant Calling Name Prefix Source Address String Up to 101 chars Instant Source Address Remove from Left Integer 0...

Page 661: ...iguration pane click the corresponding link the corresponding Calling Name Manipulation Table for Tel to IP Settings screen is displayed 6 Configure the Calling Name Manipulation Table for Tel to IP T...

Page 662: ...Number Manipulation IP to Tel the Redirect Number Manipulation IP to Tel list screen is displayed 4 Use the or buttons to add or remove entries correspondingly 5 Select a specific row in the Redirect...

Page 663: ...assigned to this entry Remove from Left Integer 0 211 Instant Stripped Digits From Left Remove from Right Integer 0 211 Instant Stripped Digits From Right Leave from Right Integer 0 255 Instant Numbe...

Page 664: ...101 chars Instant Redirect Prefix Source Trunk Group ID Integer 0 101 Instant Source Trunk Group ID Source IP Group ID Integer 0 32 Instant Source IP Group ID Number Type Enum NotIncluded Unknown Inte...

Page 665: ...f the above criteria or using each criterion independently The Operation rules are executed in the following order 1 Num of stripped digits 2 Number of digits to leave 3 Prefix suffix to add For Desti...

Page 666: ...he rules starting at the top of the table For this reason enter more specific rules above more generic rules For example if you enter 551 in entry 1 and 55 in entry 2 the Mediant 8000 applies rule 1 t...

Page 667: ...Regional 1 Level 1 Regional 2 A private number with a location For example 3932200 PISN Specific 3 Level 0 Regional local 4 A private local extension number For example 2200 For NI 2 and DMS 100 ISDN...

Page 668: ...Telephone to IP Outbound Routing Table SIP GW IP to IP Routing Telephone to IP Outbound IP To Telephone Inbound Routing Table SIP GW IP to IP Routing IP to Telephone Inbound DNS Routing Table SIP SIP...

Page 669: ...recedence over a Proxy for routing calls In the SIP Routing Settings screen set the Prefer Routing Table parameter to Enable The Mediant 8000 checks the Destination IP Address field in the Telephone t...

Page 670: ...ng Rules on page 679 When a release reason that is defined in the Reasons for Alternative Tel to IP Routing table is received For detailed information see Reasons for Alternative Routing on page 679 A...

Page 671: ...lect the desired SIP board 3 In the Navigation pane select SIP GW IP to IP Routing Telephone to IP Outbound the Telephone to IP Outbound Routing list is displayed 4 Use the or buttons to add or remove...

Page 672: ...t Prefix String Up to 50 chars Instant For Tel to IP calls leave this field empty For IP to IP calls specify the prefix of the SIP URI host name in the From header of the incoming SIP INVITE message T...

Page 673: ...sending the Tel to IP calls When set to Not Configured the Transport Type defined in SIP Proxy Parameters is used Destination IP Group Integer 1 Not Defined or 1 9 Instant The IP Group to where you w...

Page 674: ...l Forking Group ID Integer 1 Not Defined or 1 99 Instant Defines a forking group ID for the routing rule This enables forking of incoming Tel calls to two or more IP destinations The device sends simu...

Page 675: ...k group for that call is available To associate an alternative trunk group to an incoming IP call assign it with an additional entry in the IP to Trunk Group Routing table repeat the same routing rule...

Page 676: ...ard 3 In the Navigation pane select SIP GW IP to IP Routing IP to Telephone Inbound the IP to Telephone Inbound Routing list screen is displayed 4 Use the or buttons to add or remove entries 5 Select...

Page 677: ...r URI host name prefix of the incoming INVITE message To denote any source host leave the field empty Note the asterisk wildcard cannot be used to denote any source host prefix Destination Phone Prefi...

Page 678: ...cific rule This IP Group can later be used in the Tel to IP Outbound IP Routing table and as the Serving IP Group in the Account Groups table for obtaining the authentication user name password for th...

Page 679: ...3 1 Alternative Routing Provisioning Rules Each Alternative Routing table enables you to define up to 4 different release reasons To enable Alternative Routing set Enable Alternative Routing paramete...

Page 680: ...user defined name assigned to the entity MO enabling users to identify it intuitively and easily Release Cause Integer 0 232 Read Only Read only parameter indicating the release cause of the call tha...

Page 681: ...pping This seciton describes how to configure SIP ISDN Cause Mapping To configure SIP ISDN Cause Mapping 1 Click to access the Media Gateway status screen 2 Select the desired SIP board 3 In the Navig...

Page 682: ...ty SIP Response Integer 400 700 Instant Defines a flexible mapping of SIP Responses and Q 850 Release Causes When a SIP response is received from the IP side the gateway searches this mapping table fo...

Page 683: ...es different system behavior You can assign different Profiles behavior on a per call basis using the Tel to IP Oubound Routing and IP to Tel Inbound Routing tables In addition you can associate diffe...

Page 684: ...select Unlock to activate the configuration Table 41 18 Tel Profile Parameters Parameter Name Type Provisioning Type Description Name String Up to 20 chars Instant Textual user defined name assigned t...

Page 685: ...cho Canceller On Silence Compression Off Echo Canceler Non Linear Processor Mode Off Dynamic Jitter Buffer Minimum Delay 40 Dynamic Jitter Buffer Optimization Factor 13 If the gateway initiates a fax...

Page 686: ...olume Integer 0 63 Instant Voice gain control in dB Sets the level for the transmitted IP to PSTN signal DTMF Volume Integer 0 31 Instant DTMF gain control in dBm Input Gain Integer 0 63 Instant PCM i...

Page 687: ...see the ProgressIndicator2IP parameter Progress Indicator to IP Enum NotConfigured NoPI PI 1 PI 8 Instant Progress Indicator to IP NotConfigured for ISDN spans the progress indicator PI that is recei...

Page 688: ...ert utility The dial plan index can be assigned per Tel Profile Notes If this parameter is used to select a dial plan index from the Dial Plan file the settings of the parameter Digit Mapping are igno...

Page 689: ...General SIP Control Network IP Profile the IP Profiles list is displayed The IP Profile configuration frame is divided into the following tabs General Settings these settings are relevant for all SIP...

Page 690: ...es apply to the same call the coders and other common parameters noted by an asterisk of the preferred Profile are applied to that call If the Preference of the Tel and IP Profiles is identical the Te...

Page 691: ...re initiates a fax session using the coder G 711 A Law m Law with adaptations see note 1 Notes Fax adaptations Echo Canceller On Silence Compression Off Echo Canceler Non Linear Processor Mode Off Dyn...

Page 692: ...vice class content only if IP Diff Serv is not set in the selected IP Profile Note The value for the Premium Control Diff Serv is determined by according to priority 1 IPDiffServ value in the selected...

Page 693: ...t during silence period applicable only to G 729 Note If the selected coder is G 729 the following rules determine the value of the annexb parameter of the fmtp attribute in the SDP EnableSilenceSuppr...

Page 694: ...y of UDP ports used for RTP RTCP and T 38 by a remote gateway If this parameter is set to a non zero value ThroughPacket is enabled Note that the value of RemoteBaseUDPPort on the local gateway must e...

Page 695: ...useful for example when the originating gateway is located behind a firewall that blocks incoming T 38 packets on ports that have not yet received T 38 packets from the internal network i e originatin...

Page 696: ...Operation Manual 696 Document LTRT 92224 Mediant 8000 Parameter Name Type Provisioning Type Description Vxx Transport Type Enum Disable Relay Bypass EventsOnly Instant V 21 V 22 V 23 V 32 V 34 Modem T...

Page 697: ...efinition modem passthrough nse payload type 100 codec g711alaw Set the Modem transport type to Bypass mode for all modems Configure the gateway parameter NSEPayloadType 100 In NSE bypass mode the gat...

Page 698: ...nterfaces if a Progress or an Alert message with PI 1 or 8 is received from the ISDN the gateway opens a voice channel sends a 183 SDP or 180 SDP response but it doesn t play a Ringback tone to IP If...

Page 699: ...parameter Progress Indicator to IP Enum NotConfigured NoPI PI 1 PI 8 Instant NotConfigured for ISDN spans the progress indicator PI that is received in ISDN Proceeding Progress and Alert messages is u...

Page 700: ...ng calls that don t include encryption information are accepted Mandatory The device initiates encrypted calls but if negotiation of the cipher suite fails the call is terminated Incoming calls that d...

Page 701: ...h exceed the limit will be rejected Media IP Version Preference Enum OnlyIPv4 OnlyIPv6 PreferIPv4 PreferIPv6 Instant Determines the preferred RTP media IP addressing version for outgoing SIP calls Thi...

Page 702: ...ation methods Not configured use the global parameter default Not Supported No negotiation DTMF digits are sent according to the parameters DTMFTransportType and RFC2833PayloadType INFO Nortel Sends D...

Page 703: ...ng to the parameters DTMFTransportType and RFC2833PayloadType INFO Nortel Sends DTMF digits according to IETF draft choudhuri sip info digit 00 NOTIFY Sends DTMF digits according to draft mahy sipping...

Page 704: ...sed this payload type is used for the received DTMF packets If negotiation isn t used this payload type is used for receive and for transmit Add IE in SETUP String Up to 10 chars Instant Defines an op...

Page 705: ...ith each other regardless of their capabilities an extended coders table with at least one coder that is supported by each IP Groups user agents needs to be assigned to each IP Group Therefore each of...

Page 706: ...calls only Both The Board can initiate encrypted or unencrypted calls if negotiation of the cipher suite fails the call is unencrypted SBC RFC2833 Behavior Enum AsIs SRTP RTP Both Instant Determines...

Page 707: ...Enum NotConfigured DontCare AddPAssertedIdentity RemovePAssertedIdentity Instant SBC Assert Identity SBC Allowed Coders Group ID Integer 0 5 Instant Select Allowed Coders Group table SBC Allowed Code...

Page 708: ...TRANSPARENT default in other words AS IS Once the LEG configured by such an option no intervention into either Alert responses or to the Invite request and the PRACK procedure will be necessary OPTION...

Page 709: ...dle On ReINVITE Handle fax according to fax settings in the IP Profile for all re INVITE offer answer transactions except for initial INVITE SBC Fax Offer Mode Enum AllCoders SingleCoder Instant Defin...

Page 710: ...a coder match between the incoming offer coders from the calling fax and the coders of the selected Coders Group ID SBCFaxCodersGroupID then the device uses this coder If no match exists then the devi...

Page 711: ...rly media response types are supported the E SBC forwards all responses as is unchanged 1 180 Early media is sent as 180 response only 2 183 Early media is sent as 183 response only SBC Remote Multipl...

Page 712: ...nt sends RTP immediately after it sends 18x response with early media 1 Delayed After sending 18x response the remote client waits before sending RTP e g Microsoft Lync environment SBC Remote Supports...

Page 713: ...adds it to the re INVITE 2 Supported Default re INVITE is supported with or without SDP SBC Remote Update Support Enum NotSupported AfterConnect Support ed Instant There are sip trunks that don t sup...

Page 714: ...Default Refer To header is unchanged 1 Reroute through SBC SBC changes the Refer To header so that the re routed INVITE is sent through the SBC 2 Group Name Sets the host part to the name defined for...

Page 715: ...Modes The SAS feature operates in one of two modes Normal Initially the device s SAS agent serves as a registrar and an outbound Proxy server to which every VoIP CPE e g IP phones within the Enterpri...

Page 716: ...figure the SAS application 1 Click the button to access the Media Gateway status screen 2 Select the SIP board 3 In the Navigation pane select SIP SAS 4 In the Toolbar click Configuration the SIP SAS...

Page 717: ...egular SAS Normal Emergency logic same as option Standard however when in Normal mode incoming REGISTER requests are ignored Auto answer REGISTER When in Normal mode the device responds to received RE...

Page 718: ...gateway SAS Registration Time Integer 1 2 000 000 Instant Defines the value of the SIP Expires header that is sent in a 200 OK response to an incoming REGISTER message when in SAS Emergency Mode SAS L...

Page 719: ...request by a SAS proxy to force future requests in the dialog session to be routed through the SAS agent Each traversed proxy in the path can insert this header causing all future dialogs in the sessi...

Page 720: ...ase the request is sent to the user If the user is not found the request is forwarded to the Redundant SAS Proxy Set If this SAS Proxy IP appears in the Via header of the request it is not forwarded t...

Page 721: ...the top most Via header and the Contact header point to different hosts 1 Enable the device changes the Contact header so that it points to the SAS host and therefore the top most Via header and the C...

Page 722: ...s Instant Defines emergency numbers for the device s SAS application When the device s SAS agent receives a SIP INVITE from an IP phone that includes one of the emergency numbers in the SIP user part...

Page 723: ...oolbar click SAS Registration Manipulation the SAS Registration Manipulation List screen is displayed 5 Use the or buttons to add or remove entries 6 Select a specific row and in the Configuration pan...

Page 724: ...Installation Operation Manual 724 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 725: ...ayer 3 networks e g LAN and WAN ITSP accounts SIP URI user and host name manipulations Coder Transcoding To enable the SBC application 1 Pre load the SIP boards with a License Key that enables the SBC...

Page 726: ...ervers can be hidden from outside parties The topology hiding is provided by implementing back to back user agent SBC leg routing Strips all incoming SIP Via header fields and creates a new Via value...

Page 727: ...eters Parameter Name Type Provision ing Type Description Enable SBC Application Enum Enabled Disable Online Enables or disables SBC functionality Note that prior to enabling the SBC application the SI...

Page 728: ...t Media Enum Disable Enable Instant Defines the SBC media anchoring behavior Disable all cross SRD s calls via SBC are not direct media internal SRD calls are according to the SRD configuration Enable...

Page 729: ...ed Identity header The header s values are taken from the source URL 2 Remove PAsserted Identity Header Removes the PAsserted Identity header Notes This parameter affects only the initial INVITE reque...

Page 730: ...places the host part in the Request URI with the host from the REFER contact The prefix T R_ remains in the user part for regular classification manipulation and routing The special prefix can be used...

Page 731: ...ontact header If the device sends this response as is i e with the original Contact header the FEU is unable to reach the new destination 0 default The device sends the received SIP 3xx response witho...

Page 732: ...y The device provides only public GRUU to users 4 Both The device provides temporary and public GRUU to users SBC Max Forwards Limit Integer 1 70 Instant Defines the value of the Max Forwards SIP head...

Page 733: ...ime Sec Integer 0 2 000 000 Instant Defines the duration of the periodic registrations between the user and the SBC SBC responds with this value to user When set to 0 the SBC does not change the Expir...

Page 734: ...SBC uses the value of the parameter SBCUserRegistrationTime for the SBC response The valid range is 0 to 2 000 000 seconds Keep original user in Register Enum Disable EnableDisable Enable Instant Det...

Page 735: ...he end of the coder list IncludeExtentions Include Extensions Extension coders and Allowed coders are arranged according to their order of appearance in the Allowed Coders Group table Note If the SBC...

Page 736: ...x with SDP is received the device opens a voice stream according to the received SDP and disregards any subsequent 18x forking responses with or without SDP If the first response is 180 without SDP th...

Page 737: ...initions of IP interfaces resources SIP behaviors and other definitions that partition a single SIP board into multiple virtual multi service gateways Refer to SRD Table on page 628 for a detailed des...

Page 738: ...Refer to the SIP Interfaces Table on page 630 for a detailed description of the SIP Interfaces table and its configuration The figure below illustrates the SBC application call flow between an enterp...

Page 739: ...all incoming SIP dialog initiation requests This includes the SIP methods such as INVITE SUBSCRIBE OPTIONS REFER INFO UNSOLICITED NOTIFY MESSAGE and REGISTER The SIP dialog initiation process consist...

Page 740: ...p Once determined this IP Group is used for the following purposes Input for the SBC manipulation and routing processes Definition of SIP behavior via the IP Profile Media Realm and Account The classi...

Page 741: ...empts to classify the incoming SIP request fail the call can either be rejected or allowed and processed by assigning it to the default IP Group of the default SRD This behavior is determined by the S...

Page 742: ...ameter Name Type Provisioning Type Description Source SRD Integer 1 4 Instant Defines the index of the source SRD The source SRD is defined according to the UDP TCP TLS port at which the incoming INVI...

Page 743: ...ow Instant Defines SIP application layer access lists It offers greater flexibility in the security mechanism of the SBC by allowing the user to configure whitelists allowed messages and blacklists de...

Page 744: ...ondition s list is displayed 4 Use the or buttons to add or remove entries 5 Select a specific row and in the Condition pane click SBC Condition Settings the SBC Condition Settings screen is displayed...

Page 745: ...tination user name manipulation pre post routing 43 11 1 SBC IP to IP Routing Table The SBC IP to IP Routing table provides enhanced IP to IP call routing capabilities for routing received SIP message...

Page 746: ...to the alternative routing load balancing provided by the Destination s IP Group s associated Proxy Set the SIP IP to IP Routing table also allows the configuration of alternative routes whereby if a...

Page 747: ...4 Use the or buttons to add or remove entries 5 Select a specific row and in the Configuration pane click SIP IP to IP Routing Settings the SIP IP to IP Routing Settings screen is displayed 6 Configur...

Page 748: ...he user part of the incoming SIP INVITE s destination URI usually the Request URI To denote any destination username prefix leave the field empty or use asterisk symbol Destination Host String Up to 5...

Page 749: ...ase if SERVER type Dest Address The INVITE is sent to the address configured in the following fields Destination SRD Destination Address Destination Port and Destination Transport Type Request URI The...

Page 750: ...URI of the received INVITE to an AOR registration record in the device s internal database The INVITE is then sent to the IP address of the registered contact Note This is only relevant if parameter D...

Page 751: ...the parameter Destination Type is set to Dest Address When using domain names enter a DNS server IP address or alternatively define these names in the Internal DNS Table Destination Port Integer 1 655...

Page 752: ...his alternative route only if the incoming INVITE matches this IP to IP routing rule s input characteristics Notes The alternative route entry must be defined in the next consecutive table entry to th...

Page 753: ...2 Select the SIP board 3 In the Navigation Pane select SIP SBC SBC Routing Alternative Route Reasons the SIP Alternative Route Reasons list is displayed 4 Use the or buttons to add or remove entries...

Page 754: ...t name source and destination manipulations are simply host name substitutions with the names defined for the source and destination IP Groups respectively if any in the IP Group table Manipulated des...

Page 755: ...at match all or any combination of the matching rules are subsequently modified according to the Operation rules To configure SBC IP to IP Inbound Manipulation 1 Click the button to access the Media G...

Page 756: ...field empty or use asterisk symbol Destination Host String Up to 50 chars Instant Defines the hostname of the incoming SIP request s destination URI usually the Request URI user part To denote any de...

Page 757: ...and the user name is bobby the new user name is by Remove From Right Integer 0 255 Instant Defines the number of digits to remove from the right of the user name prefix For example if you enter 3 and...

Page 758: ...ick SBC IP to IP Outbound Manipulation the SBC IP to IP Outbound Manipulation screen is displayed 6 Configure SBC IP to IP Outbound Manipulation parameters according to the tables SBC IP to IP Outboun...

Page 759: ...it No Regular manipulation rule not performed in addition to the rule above it Yes If the previous table row entry rule matched the call consider this row entry as a match as well and perform the mani...

Page 760: ...number of digits to remove from the right of the user name prefix For example if you enter 3 and the user name is bobby the new user name is bo Leave From Right Integer 0 255 Instant Defines the numbe...

Page 761: ...vider The manipulations can also be implemented to resolve incompatibilities between SIP devices inside the enterprise network SIP messaging manipulation supports the following Addition of new headers...

Page 762: ...Installation Operation Manual 762 Document LTRT 92224 Mediant 8000 Example of SBC Header Manipulation Figure 43 8 SBC Message Manipulation...

Page 763: ...Select the SIP board 3 In the Navigation pane select SIP SBC SBC Message Manipulation the SBC Message Manipulation list is displayed 4 Use the or buttons to add or remove entries 5 Select a specific r...

Page 764: ...g element only 5 Remove Suffix removes value from the end of the string string element only 6 Remove Prefix removes value from the beginning of the string string element only Action Value String Up to...

Page 765: ...ng policies than other SIP methods 1 Determining source and destination URL s The source URL is obtained from the To header The destination URL is obtained from the Request URI 2 Classification The RE...

Page 766: ...ndently maintained by each SIP board No information is shared between different SIP boards Database bindings are deleted in the following cases Successful de registration responses REGISTER with Expir...

Page 767: ...tered AOR the AOR of the incoming REGISTER request c Registered contact the Contact of the incoming REGISTER request If registrations are destined to the database using the above rules the device does...

Page 768: ...ayed 6 Configure SBC Admission Control parameters according to the table below 7 Click the Maintenance icon and select Unlock to activate the configuration Table 43 14 SBC Admission Control Settings P...

Page 769: ...cription 1 2147483647 allowed per user Value 1 means that no limit is imposed Value 0 means that no dialogs are allowed Dialogs Rate Integer 0 65536 Instant Defines limit on dialogs rate Value 0 means...

Page 770: ...hough the device usually does not change the negotiated media capabilities mainly performed by the remote user agents it does examine the media exchange to control negotiated media types if necessary...

Page 771: ...coder parameters DSP resources are required 43 16 1 Media Anchoring without Transcoding Transparent To direct the RTP to flow through the device for NAT traversal firewall and security all IP address...

Page 772: ...f different IP Groups to communicate with each other regardless of their capabilities an extended coders table with at least one coder that is supported by each IP Groups user agents needs to be assig...

Page 773: ...ion time The device also supports early media whereby the first offer answer transaction is finalized and the media flow starts before the SIP call is connected before the INVITE 200 OK response The o...

Page 774: ...e s SBC application interworks the media by implementing Media transcoding since both legs have different media capabilities In the SBC application forced transcoding of voice in an SBC session allows...

Page 775: ...Part VI Maintenance This part describes the Mediant 8000 maintenance procedures...

Page 776: ......

Page 777: ...be restored on both SC boards The backup file contains complete configuration data including IP addresses of the SC and Media Gateway boards Therefore you should restore the backup file on the same Me...

Page 778: ...eway status screen 2 In the Actions bar click Backup the Backup Dialog screen is displayed Figure 44 1 Backup Dialog screen 3 Select whether you wish to create Configuration Backup or Full Backup Conf...

Page 779: ...ght click and choose the Save As option from the drop down menu To create a backup for the Media Gateway software via CLI 1 Connect to the CLI interface on Active SC board For more information see Sec...

Page 780: ...the logged in user e g data acladmin directory for acladmin user unless you specify a complete file name starting with the symbol e g data shared 12_jan2009 bk It is recommended to end the backup file...

Page 781: ...p done Creating backup file done Compressing backup file done Creating self extracting backup file done Backup file data acladmin backup_12jan2009 bk was successfully created 7 For safekeeping transfe...

Page 782: ...this system are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system is prohibited and cou...

Page 783: ...for details If current IP network configuration of the Mediant 8000 is different from the IP network configuration at the time when backup was created e g there is a difference in VLAN tags or interf...

Page 784: ...d on the EMS server or a file stored in some other location e g on the EMS client PC or on a file server 5 Choose the backup file and click OK 6 Wait patiently while the Media Gateway software is rest...

Page 785: ...roperly activities on this system are monitored and recorded and subject to audit Use of this system is expressed consent to such monitoring and recording Any unauthorized access or use of this system...

Page 786: ...x backup_12jan2009 bk client238 backup_12jan2009 bk RESTORE This backup contains the following data Product type Mediant 8000 Software version 6 6 15 Binaries included Yes Created at Sun Jan 12 18 20...

Page 787: ...ess The Media Gateway software starts automatically after the SC board completes the reboot process 8 After the SC board completes the reboot process re connect to its CLI interface and login as a reg...

Page 788: ...in case of severe malfunction or misconfiguration The procedure for restoring the automatic backup is identical to the one described in Restoring Media Gateway Software from Backup on page 783 The on...

Page 789: ...r 0 23 Instant Defines the hour when Automatic Backup is performed Default 3 corresponds to 3 00 AM Automatic Backup Minute Integer 0 59 Instant Defines the minute when Automatic Backup is performed D...

Page 790: ...Installation Operation Manual 790 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 791: ...ive to static electricity Normal amounts of static electricity generated by clothing can damage electronic equipment To reduce the risk of damage due to electrostatic discharge when installing or serv...

Page 792: ...000 chassis with blank panels to maintain the mandatory high internal airflow and to ensure continuous compliance with EMC standards Note The front blank panels are baffled panels Be sure to use this...

Page 793: ...pped because SC boards normally have OS pre installed on them Configuring the IP address on the replaced SC board Installing software on the replaced SC board and bringing it up 45 2 1 Replacing the F...

Page 794: ...ou hear a click 5 Wait for the hot swap blue LED to turn off 6 Fasten the screws on the front plate of the board to secure the board to the chassis and to ensure that the board has an earth connection...

Page 795: ...y Board The procedures for replacing the TP 6310 and 8410 Media Gateway boards are identical To remove a Media Gateway board from the chassis 1 In the EMS lock the Media Gateway board to be replaced F...

Page 796: ...rom the chassis 1 In the EMS lock the Media Gateway board of the RTM to be replaced For more information see Working with the Media Gateway Boards on page 245 2 Remove all of the cables attached to th...

Page 797: ...in the Mediant 8000 chassis See the constraints for adding Media Gateway board listed in the following section 2 Insert the TP 6310 or 8410Media Gateway board into the designated slot in the front of...

Page 798: ...a Gateway in the slot In less than a full configuration place boards from slot 17 to 11 and then 8 to 7 adding boards from the highest slot number to the lowest slot number Unused slots must be covere...

Page 799: ...Screen provision the ascertained MAC addresses a Click to access the Media Gateway status screen b Select the newly added Media Gateway board and in the Action bar click Unlock c In the Navigation pa...

Page 800: ...oard on the grooves on each end 3 Ease the board all the way into the slot until the ejector injector latches touch the chassis and it is flush with the other boards 4 Press the two black ejector inje...

Page 801: ...g that the board can be removed 4 Pull on the two ejector injector latches and ease out the board from the slot To insert an Ethernet Switch board into the chassis 1 Hold the board Vertical with the t...

Page 802: ...ot aligning the board on the grooves on each end 3 Ease the board all the way into the slot until the ejector injector latches touch the chassis 4 Press the two black ejector injector latches on both...

Page 803: ...onfigure a temporary IP address on the ES board 1 Connect to the Switch Board s RS232 console 2 Log in using the username admin and password password Escape character is PTI CPC6600 from application l...

Page 804: ...describes the procedure for replacing the Power Supply Module PS DC 8K To remove a faulty power supply 1 Unfasten the screws of the grill and remove it to access the power supply modules Figure 45 4 O...

Page 805: ...front panel is flush with the chassis plate The green LED lights up 2 Fasten the screws of the power supply 3 Close the grill and fasten the screws at both sides 4 In the EMS main status screen verif...

Page 806: ...turn blue 5 Open the latch and slightly pull the PEM module out of the chassis Wait for 30 seconds and then remove it completely To insert a replacement DC PEM module 1 Insert the replacement PEM modu...

Page 807: ...ray units 2 Release the 2 screws on both sides of the Fan Tray unit Caution When removing a fan tray unit the fans continue to rotate at a high speed Use caution not to touch the rotating fan blades 3...

Page 808: ...nt air filters should be replaced approximately every 90 days The figure below indicates the location of the filters and shows the air filter partially removed from the Mediant 8000 chassis Caution Be...

Page 809: ...up under the card cage and pushing it into its slot 3 Fasten the screws at each end of the cable rack 4 Note the direction indicator arrow on the edge of the replacement filter With the direction indi...

Page 810: ...Installation Operation Manual 810 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 811: ...Gateway components including System Controller SC boards Media Gateway boards Ethernet Switch ES boards The Media Gateway configuration is preserved throughout the upgrade procedure and the effect on...

Page 812: ...utdown mode is available for all Media Gateway boards without any dependency on the Redundant Media Gateway board s availability or any specific configuration In this mode each Media Gateway board is...

Page 813: ...ack functionality that enables roll back to the pre upgrade software version and configuration For details on performing a backup see Media Gateway Software Backup Restore Procedures on page 774 46 3...

Page 814: ...ilarly for a bandwidth rate or 10 Mbps the transfer takes approximately 2 5 minutes 46 3 3 Verifying that the Online Software Upgrade is Supported Make sure that an upgrade from the specific Media Gat...

Page 815: ...equals 5 minutes For Graceful Shutdown mode it may be calculated using the following formula where is the Graceful Shutdown time in minutes that is configured in the Online Software Upgrade Wizard s W...

Page 816: ...olaris OS and 3 Media Gateway boards in a typical IP network as follows Note Even when you choose Hitless Upgrade as the preferred upgrade mechanism some Media Gateway boards may be upgraded via the G...

Page 817: ...starting the upgrade as described in this section To reduce Online Software Upgrade time you may pre install OS patches on both SC boards prior to starting the Online Software Upgrade The pre installa...

Page 818: ...boards match the default settings of the EMS server However for security reasons it is recommended to change these passwords to some other value See Changing the Password of EMS User on page 365 and...

Page 819: ...ver No affect on the Media Gateway operation occurs during this transfer The Media Gateway software package transfer takes a few minutes in a typical IP network environment with 10 Mbps or better band...

Page 820: ...xt stage 46 4 1 Starting the Online Software Upgrade Wizard The Online Software Upgrade is performed via the Online Software Upgrade Wizard that is opened from the EMS client application A single inst...

Page 821: ...en configure the following parameters VoP Board Upgrade Mechanism preferred upgrade mechanism used for upgrading the Media Gateway boards The following options are available Hitless Upgrade Media Gate...

Page 822: ...ed by the upgrade process Graceful Shutdown Period sec the amount of time allowed for calls to end before upgrading each Media Gateway board via the Graceful Shutdown mechanism This parameter has no a...

Page 823: ...bandwidth If IP network connection between EMS server and the SC boards has limited bandwidth you may perform the following workaround to reduce the time of the Online Software Upgrade within the upg...

Page 824: ...cess continues from the step at which it left off earlier 46 4 4 Upgrading the 2nd SC Board In the first stage the 2 nd initially Standby SC board s software is upgraded When upgrade on this board is...

Page 825: ...because all required OS patches are already installed Note An upgrade between major software versions on a chassis that uses SC Rev 1 boards using the Solaris OS may take more than 3 hours due to the...

Page 826: ...Wizard is no longer running 46 4 6 Upgrading the ES Boards The Ethernet Switch boards are upgraded one after another starting from the standby ES board the ES board that functions as a standby board...

Page 827: ...n the relevant section Table 46 1 New Features of Version 6 6 Software that must be Manually Activated after Upgrading from an Earlier Version Feature Name Detailed Description Remote access by root u...

Page 828: ...ful Shutdown mechanism The ES boards are downgraded to the previous version automatically one by one without any affect on the service for more information see Section Overview on page 811 Note The Hi...

Page 829: ...client208 tools sc dn Note Stop the Media Gateway software on both SC boards as described above 5 If you can not connect via Telnet SSH to some SC board take these 3 steps a Reboot the SC board by pr...

Page 830: ...ack of the 1 st SC board described above However it is important to rollback a 1 st SC board first which minimizes the downtime frame when the Mediant Media Gateway is not functioning If the 1 st SC b...

Page 831: ...proceed with the Online Software Upgrade from the same point where it was interrupted To recover the Online Software Upgrade from a network failure or EMS server client crash 1 Close and re open the E...

Page 832: ...Installation Operation Manual 832 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 833: ...on describes the recommended method for maintaining AudioCodes Mediant 8000 Media Gateway s AudioCodes provides a wide range of diagnostic tools to enable users to easily identify an error condition a...

Page 834: ......

Page 835: ...h as these What is the scope of the problem Does it affect one particular interface a group of interfaces or the entire Media Gateway What capabilities are affected Does the problem occur during dayti...

Page 836: ...ut Verify that console cable pinout is correct SC Rev 1 board Solaris OS on page 64 SC Rev 2 Board Linux OS on page 66 SA Synchronization and Alarm RTM on page 69 Cable problem Replace the cable No co...

Page 837: ...by extracting them from the chassis and re inserting them It may take up to 10 minutes for the ES boards to complete the reset procedure Working with the ES boards on page 261 No communication with t...

Page 838: ...Gateway software starts automatically after the SC board is rebooted If this does not help one of the following scenarios must have occurred Media Gateway software is not installed on the SC board ins...

Page 839: ...tches or Routers in Section Connecting the Mediant 8000 to the IP Network on page 217 No communication with the Media Gateway after ES board failure switchover there is no ping to SC s Global IP Two e...

Page 840: ...s Media Gateway board is Disabled colored red in the EMS Media Gateway board is completing the Unlock action It may take up to 3 minutes for the Media Gateway board to complete the reboot that accompa...

Page 841: ...lock unlock cycles Working with the Media Gateway Boards on page 245 Troubleshooting the Newly Installed Media Gateway Board on page 799 Diagnostics on Reset parameter is enabled In the EMS open Medi...

Page 842: ...ote Media Gateway In the remote Media Gateway check that packetization time period Ptime is 20 msec and the correct law or A law compression is in use Configuring the Voice Settings on page 527 Silenc...

Page 843: ...tion Connecting to IP Network on page 116 To recover the OAM VLAN settings 1 Connect to the CLI interface on the Active SC board typically located in Slot 1 via RS 232 serial console For more informat...

Page 844: ...Installation Operation Manual 844 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 845: ...s The Syslog protocol is an event notification protocol that allows a device to send event notification messages across IP networks to event message collectors also known as Syslog servers Since each...

Page 846: ...d displays the last number of log messages For example to see the last 100 log messages from Media Gateway board in slot 6 use the log 100 board 6 command With option f the log command displays the co...

Page 847: ...of UDP Syslog packets thereby improving CPU utilization You can configure these Debug levels for SIP messages globally for all SIP boards by setting SIP Logging Level in the gateway level Troubleshoo...

Page 848: ...1 through 4 49 2 1 Configuring Filter Rules The configuration of SIP logging rules is enabled at the Media Gateway level This to enable logging filters for the entire Media Gateway However a customer...

Page 849: ...and B channel applicable only to the Gateway IP to IP application Tel to IP Filters according to a specified Tel to IP routing rule listed in the Outbound IP Routing table applicable only to the Gate...

Page 850: ...to select traffic to be forwarded For example it is possible to select traffic between the Media Gateway board and specific remote Media Gateway Or alternatively select traffic that belongs to the spe...

Page 851: ...these files may be sent to the AudioCodes Technical Support for further analysis Note Debug Recording Traces should never be collected on the Active SC board since this may cause Media Gateway service...

Page 852: ...high amount of traffic the CDR data is overwritten relatively quickly 49 4 1 Collecting Call Data Records on SIP Boards You can collect Call Data Records on SIP boards and forward them to a Syslog se...

Page 853: ...nt Determines whether CDRs are sent to the Syslog server When enabled indicates upon events they are sent Valid options include 0 Call Detail Record CDR is not used default 1 CDR is sent to the Syslog...

Page 854: ...ce X with the number of the Media Gateway board for which you want to record CDRs client238 tpCmd moBoard 7 cp cdr start 7 To stop CDR recording at the prompt type tpCmd moBoard X cp cdr stop and pres...

Page 855: ...e from the Media Gateway board 1 Click to access the Media Gateway status screen 2 Select the desired Media Gateway board 3 Right click the selected Media Gateway board and from the pop up menu select...

Page 856: ...Installation Operation Manual 856 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 857: ...g debug data upon explicit request from the AudioCodes technical support It is not officially supported for any other use Access to the WEB interface of the Media Gateway board is disabled by default...

Page 858: ...g Internet Explorer 2 Enter the following URL Error Hyperlink reference not valid address where IP address is the OAM IP address of the Media Gateway board Note Use https and not http in the URL when...

Page 859: ...e following tasks must be performed Configure ES Mirror Filters to select IP packets that will be mirrored by each ES board Alternatively you may configure ES board to mirror all traffic from the spec...

Page 860: ...Installation Operation Manual 860 Document LTRT 92224 Mediant 8000 Figure 51 1 IP Packets Figure 51 2 Ethernet Header Figure 51 3 IP Header...

Page 861: ...Version 6 6 861 October 2014 Installation Operation Manual 51 Collecting Traces from the Ethernet Switch Board s Mirror Port Figure 51 4 TCP Header Figure 51 5 UDP Header Figure 51 6 ICMP Header...

Page 862: ...ter Properties Parameter Name Type Provisioning Type Description Name String Instant The textual user defined name for the ES Mirror Filter enabling it to be identified intuitively and easily Free Use...

Page 863: ...must be specified in decimal format When set to 1 matches all element values Src IP String Online Defines the value of the Source IP Address element in the packet s IP header bits 241 272 The value mu...

Page 864: ...tax The syntax consists of one or more filter blocks each block consisting of the bits range and a hexadecimal value For example filter 1 16 33 134 137 a matches IP packets that have 16 bits starting...

Page 865: ...its 177 192 The value must be specified in decimal format When set to 1 matches all element values Fragment Flag Integer 1 to 7 Online Defines the value of the Fragment Flag element in the packet s IP...

Page 866: ...specified in decimal format When set to 1 matches all element values TCP Header Len Integer 1 to 15 Online Defines the value of the TCP Header Length element in the packet s TCP header bits 401 404 T...

Page 867: ...port is limited therefore you may not be able to mirror traffic from more than a few internal ES board s ports Also note that capture files produced by mirroring all traffic on the specific port may...

Page 868: ...the user may perform manual recording via the alternative software e g WireShark When mirrored traffic is sent to the Standby SC and recording is performed via the standard network capture utilities t...

Page 869: ...on ES Board After you completed all above described configuration steps you must start mirroring on each applicable ES board Note that normally all IP traffic passes through the Active ES board Howeve...

Page 870: ...Installation Operation Manual 870 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 871: ...of the available Log Areas Customer s Log Area logs that may be directly accessed by the customer AudioCodes Technical Support Log Area logs intended for AudioCodes Technical Support and Field Enginee...

Page 872: ...rding TPNCP Infrastructure activities against the chassis resident boards Project bin log watchdog the directory that logs information of the watchdog activities the watchdog constantly monitors state...

Page 873: ...ogs by specifying board slot number instead of the logfile For more information see Section Collecting Advanced Media Gateway Board Logs on page 843 Without any options the log command displays the ne...

Page 874: ...e collected via EMS GUI or alternatively via command line interface CLI To collect the Report file via the EMS GUI 1 Click to access the Media Gateway status screen 2 In the Actions bar click Collect...

Page 875: ...ENERATE BUG REPORT Enter bug report file name report tar report tar Include VoP board logs y n y Collect some summary data Pack data into the report tar Compress report file Please deliver file report...

Page 876: ...Installation Operation Manual 876 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 877: ...ion of the Media Gateway configuration including the number and type of Media Gateway boards network configuration signaling protocols being used the exact software version 2 A detailed description of...

Page 878: ...Installation Operation Manual 878 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 879: ...Part VIII Appendices This part describes additional Mediant 8000 configuration procedures...

Page 880: ......

Page 881: ...VLAN tagging is not used Three Subnets are used for management OAM call control and media traffic subnets are separated via the use of tagged VLANs and a single physical interface is used for connecti...

Page 882: ...Basic Configuration of the Mediant 8000 Software on page 146 When prompted provide the allocated IP address e g 10 8 1 10 3 Connect to the CLI interface on the Active SC board typically located in Sl...

Page 883: ...d in the EMS GUI It may take up to 5 minutes for all Media Gateway boards to complete the restart When the Media Gateway board returns to service its Operational State will be changed to Enabled and t...

Page 884: ...ationalState OperationalState Enabled 1 d Unlock the ES board in slot 19 SC 1 moGW unlock esboard 19 Performing unlock action on moGW moSwitchBoard 19 OK e Wait up to 10 minutes until the ES board in...

Page 885: ...erface To configure the Mediant 8000 for a specific network setup 1 Configure the basic IP network parameters of the SC boards as described in Configuring the Basic IP Network Parameters of the SC Boa...

Page 886: ...see Connecting to the CLI via an RS 232 Serial Console on page 109 4 Login as a CLI user with administrative privileges e g acladmin For more information see Logging into the Command Line Interface on...

Page 887: ...way board s IP Addresses modify moBoard 11 moBoardIPAddress 1 10 6 1 20 modify moBoard 11 moBoardIPAddress 2 10 7 1 20 modify moBoard 11 moBoardIPAddress 3 10 8 1 20 modify moBoard 12 moBoardIPAddress...

Page 888: ...to 10 minutes until the ES board in slot 9 completes the restart operation and returns to service Use the following command to determine whether the ES board has completed the restart operation or not...

Page 889: ...and the Cisco L3 switch network The appendix also describes test failure scenarios The procedures described in section Configuring the User Environment Cisco L3 switch on page 893 are based on HSRP h...

Page 890: ...Installation Operation Manual 890 Document LTRT 92224 Mediant 8000 Figure B 1 HSRP VRRP Configuration...

Page 891: ...VLAN ID 11 MEDIA VLAN ID 12 B 2 3 OAM Subnet Settings It is presumed that the SC boards are already configured with the correct IP addresses that belong to the OAM Subnet 10 77 10 0 24 If this is not...

Page 892: ...y moSubnet 2 VLANTagID 11 add moSubnet 3 modify moSubnet 3 SubnetIP 10 77 12 0 modify moSubnet 3 SubnetPrefixBitsLength 24 modify moSubnet 3 DefaultGW 10 77 12 1 modify moSubnet 3 VLANTagID 12 add moN...

Page 893: ...odify moGW moBoard 7 MediaARPCacheoverride EnableGARP 2 B 3 Configuring the User Environment Cisco L3 switch This section describes the CLI configuration actions required on the Cisco L3 switch B 3 1...

Page 894: ...ity of all VLAN interfaces is 100 default values In the example by default if there is no failure the active L3 switch is 3560_G2 standby 10 priority 105 Configure an interface to track other interfac...

Page 895: ...ommand channel group XXX mode on port channel load balance dst ip interface Port channel1 interface Port channel2 interface GigabitEthernet0 1 interface GigabitEthernet0 2 channel group 1 mode active...

Page 896: ...10 12 switchport mode trunk channel group 3 mode active interface GigabitEthernet0 2 switchport trunk encapsulation dot1q switchport trunk allowed vlan 10 12 switchport mode trunk channel group 3 mod...

Page 897: ...ndby 1 priority 105 standby 1 preempt standby 1 authentication HSRP1 standby 1 track GigabitEthernet0 20 standby 1 track GigabitEthernet0 21 standby 1 track GigabitEthernet0 22 interface Vlan10 ip add...

Page 898: ...ip address 10 77 12 2 255 255 255 0 standby 12 ip 10 77 12 1 standby 12 timers msec 330 msec 990 standby 12 priority 105 standby 12 preempt standby 12 authentication HSRP12 standby 12 track GigabitEth...

Page 899: ...the other hand the active L3 switch is chosen according to the failed link between 3560_G2 and 3560_G3 and between 3560_G2 and 3560_G1 In the EMS the active Ethernet Switch is displayed To verify the...

Page 900: ...default state In the EMS right click board 19 and select Maintenance Align All Boards To Me state 2 Shut down 1 link from channel group 1 on 3550_G2 Cisco state 2 Shut down 1 link from channel group 2...

Page 901: ...1 2 Initial State 2 In the EMS right click board 9 and select Maintenance Align All Boards To Me state 1 Shut down 1 link from channel group 1 on 550_G3 Cisco state 1 Shut down 1 link from channel gro...

Page 902: ...State 3 In EMS right click board 9 and select Maintenance Align All Boards To Me state 4 Shut down 1 link from channel group 1 on 3550_G3 Cisco state 4 Shut down 1 link from channel group 2 on 3550_G...

Page 903: ...1 4 Initial State 4 In EMS right click board 19 and select Maintenance Align All Boards To Me state 3 Shut down 1 link from channel group 1 on 3550_G2 Cisco state 3 Shut down 1 link from channel grou...

Page 904: ...Installation Operation Manual 904 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 905: ...basic understanding of how to operate the product Adjacent to each test case there is a reference to the relevant chapter in the documentation The tester should read these chapters to acquire the requ...

Page 906: ...active SC board the one with the grey background in the EMS GUI Verify that SC switchover has successfully completed another SC board should become active Wait till the initially active SC board retu...

Page 907: ...the state of the Media Gateway boards Select 1 st Media Gateway board in the Media Gateway s status screen In the Information Panel verify the following Administrative State is Unlocked Operational St...

Page 908: ...is Enabled Verify that all PSTN links trunks are properly recovered on the redundant Media Gateway board Lock and unlock the Media Gateway board where you performed Switch Over maintenance action Wait...

Page 909: ...13 Verify the state of the Media Gateway board s clock synchronization Verify the status of the System Clock on the Media Gateway status screen Normally configured System Clock is color coded green Op...

Page 910: ...Installation Operation Manual 910 Document LTRT 92224 Mediant 8000 This page is intentionally left blank...

Page 911: ...cs Alarm board diagnostics alarm 17 NTP Server Status Changed NTP server status changed 18 GW Switchover Alarm GW switchover alarm 19 Configuration Change configuration change 20 SS7 Activity State Ch...

Page 912: ...efore some alarms are suppressed 42 Board CPU Overload Alarm board CPU overload alarm 43 Trunk Activity State Change Alarm change of trunk s activity status 44 V5 2 Port File Alarm v5 2 port configura...

Page 913: ...iant 8000 System 797 Adding the Media Gateway Software to the EMS Server 819 Additional Network Services and Settings 212 Additional Network Settings 203 Additional OAM Subnet Configuration 197 Admini...

Page 914: ...609 Collecting Advanced Media Gateway Board Logs 845 873 Collecting Call Data Records CDRs 852 Collecting Call Data Records CDRs on MEGACO Boards 854 Collecting Call Data Records on SIP Boards 852 Co...

Page 915: ...roller 285 Configuring Media Link Aggregation 194 Configuring Media Realms 210 739 Configuring MEGACO Virtual Gateways 283 Configuring MGCP MEGACO Call Control Settings 277 283 Configuring Mirror Dest...

Page 916: ...189 196 215 Connecting Cables to Media Gateway s RTM Module 797 Connecting E1 T1 PSTN Cables TP 8410 Boards 125 Connecting IP Network Cables 121 Connecting Mediant 8000 to IP Network 185 Connecting ST...

Page 917: ...ard Actions ES 6600 262 ES Board Actions ES 2 262 ES 6600 ES Ethernet Switch Board 73 ES 6600 Physical Slots to Ethernet Port Mapping 76 ES 6600 RTM Rear Transition Module 78 121 ES 2 ES Ethernet Swit...

Page 918: ...from the USB CD DVD Drive via the RS 232 Serial Console 244 Installing the Linux OS from the USB Flash Drive via the RS 232 Serial Console 238 245 Installing the Linux OS on the SC Rev 2 Board 231 Ins...

Page 919: ...ational State 160 Manipulation on all Inbound Outbound SIP INVITE 658 Manipulation Tables 658 Media Gateway Boards Configuration Backdoor 417 Media Gateway Board Actions 247 249 797 Media Gateway Boar...

Page 920: ...d 147 307 362 Performing Basic Configuration of the Mediant 8000 Software on the SC Board to Operate as the Standby Board 150 307 Performing the Online Software Upgrade 820 Planning the Maintenance Ti...

Page 921: ...ateway Software from Backup 783 788 Rollback 828 Routing Based on LDAP Active Directory Queries 639 Routing using Registrations Database 767 S SA RTM Replacement Procedure 797 800 SA RTM Synchronizati...

Page 922: ...8 State s Line Structure 440 Static Routes 203 Stopping Mirroring on ES Board 869 STP Functionality Alias Point Code 504 Subnets and Network Profiles Settings 892 Supported Actions 420 Supported SS7 A...

Page 923: ...e of OAM Control and Media Subnets by Mediant 8000 Boards 185 User Registration 765 Using Auxiliary Files 421 Using External NTP Servers 266 Using Tagged VLANs for Subnet Separation 188 Using the EMS...

Page 924: ...Media Gateway Mediant 8000 www audiocodes com Installation Operation Maintenance Manual...

Reviews:

No comments

Related manuals for Mediant 8000

Brand: Ubee Pages: 114

Brand: Ubee Pages: 105

Brand: Ubee Pages: 96

Brand: Ubee Pages: 96

Brand: RTA Pages: 66

Brand: Juniper Pages: 3

Brand: QUPIT Pages: 16

Brand: AudioCodes Pages: 70

Brand: NETGEAR Pages: 7

MultiVOIP MVP130BG

Brand: Bogen Pages: 2

Brand: 2Wire Pages: 131

Brand: ActionTec Pages: 2

Brand: WePresent Pages: 68

Brand: ZyXEL Communications Pages: 307

AWGTY-DGOISG86A0

Brand: AWPLC Pages: 25

Brand: B+B SmartWorx Pages: 146

Brand: X-Trax Pages: 45

Brand: T-Mobile Pages: 25

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands