Nortel Networks 2330 User Manual
Secure Router 2330/4134 as Communication Server 1000
Survivable SIP Branch Solution
Quick Start Configuration Guide
Release: 10.2
Document Revision: 01.03
www.nortel.com
NN-SR-0001
Secure Router 2330/4134 as Communication Server 1000 Survivable SIP Branch Solution
Release: 10.2
Publication: NN-SR-0001
Document release date: 23 November 2009
Copyright © 2009 Nortel Networks. All Rights Reserved.
While the information in this document is believed to be accurate and reliable, except as otherwise
expressly agreed to in writing NORTEL PROVIDES THIS DOCUMENT "AS IS" WITHOUT WARRANTY OR
CONDITION OF ANY KIND, EITHER EXPRESS OR IMPLIED. The information and/or products described
in this document are subject to change without notice.
Nortel, Nortel Networks, the Nortel logo, and the Globemark are trademarks of Nortel Networks.
All other trademarks are the property of their respective owners.
Contents
3
CONTENTS 3
NEW IN THIS RELEASE 4
N
AVIGATION
CS 1000
F
EATURE BACKGROUND
Communication Server 1000 4
Secure Router 4134 6
Secure Router 2330 7
F
EATURE DESCRIPTION
Multiservice Branch Router 7
Survivable SIP PSTN Gateway 8
INTRODUCTION 10
N
AVIGATION
SR 2330/4134 INTEROPERABILITY WITH CS 1000 11
SR 2330/4134, CS 1000
SSM O
SIP G
CS 1000 CONFIGURATION 16
SLG C
Steps 16
SSG C
Steps 26
NRS/SPS C
Steps 29
SIP C
CS 1000 P
4
AND SECURE ROUTER
7
10
PERATION
ATEWAY OPERATION
ONFIGURATION
ONFIGURATION
LIENTS CONFIGURATION
12
16
26
ONFIGURATION
ATCHES
34
2330/4134 4
4
COMPONENTS
13
29
34
11
SR 2330/4134 CONFIGURATION 35
Steps 35
NTML Examples 40
Example of Normal mode NTML (normal_cs1k.ntm) 40
Example of Backup mode NTML (backup_cs1k.ntm) 40
New in this release
The following section details what’s new in Secure Router 2330/4134 as Communication
Server 1000 Survivable SIP Branch Solution (NN-SR-0001) for Release 10.2.
Features
The following sections detail the Secure Router 2330/4134 based CS 1000 branch solution and its
features.
Navigation
•
"CS 1000 and Secure Router 2330/4134" (page 4)
•
"Feature background" (page 4)
•
"Feature description" (page 7)
CS 1000 and Secure Router 2330/4134
4
In a centralized CS 1000 call server architecture, the remote branches make use of the call
processing resources available at a central location, generally located at the corporate
headquarters. The survivable branch solution based on Secure Router 4134 (SR 4134) and
Secure Router 2330 (SR 2330) provides business continuity to the branch office in the event
of a WAN connection outage to corporate headquarters. With this solution, employees at the
branch office can continue to use SIP phones to place and receive intra-site calls and calls
over the PSTN, including 911 calls.
Feature Background
Communication Server 1000
Nortel Communication Server 1000 is a server-based, full-featured IP PBX and the
cornerstone of Nortel Enterprise Unified Communication deployments. It provides the
benefits of a converged network plus advanced applications and over 750 world-class
telephony features. Fully distributed over IP LAN & WAN infrastructure with built-in reliability
and survivability, Communication Server 1000 supports business-critical applications,
including unified messaging, customer contact center, IVR, wireless VoIP and IP phones.
Key Features:
• Feature rich with over 750 call processing and telephony features
• Highly scalable with support for up to 22,500 IP users off of one Call Server, multiple
Call Servers networked together can support unlimited scalability
• World class reliability and redundancy mechanisms - highly reliability architectural
elements that maximize network uptime with extensive redundancy mechanisms to
ensure network uptime including survivability options such as Campus and
Geographic redundancy to support network failover
• Extensive desktop portfolio includes; Wireless, Soft-phones, IP, Digital and Analog set
support, to meet diverse end-user requirements
• Supports business-critical applications, including IP Contact Center, CallPilot unified
messaging, and integrated services such as conferencing, one-number-follow-me
Personal Call Director, recorded announcement, network-wide attendant and
messaging
• Telephony integration with desktop application providers such as Microsoft and IBM
5
For more details please refer Nortel CS 1000 Product Webpage
http://products.nortel.com/go/product_content.jsp?segId=0&catId=null&parId=0&prod_id=511
21&locale=en-US
6
Secure Router 4134
The Nortel Secure Router 4134 is a modular, multi-service platform that integrates multiple
networking functions, including routing, WAN, Ethernet switching, security and Voice over IP
(VoIP) into a single device. The platform's design ensures the consistently high throughput
required by voice, data or unified communications applications. The first device of its kind to
feature embedded Microsoft intelligence to simplify deployment of unified communications,
the Secure Router 4134 can reduce the number of devices needed at the branch or regional
site, generating substantial operational and capital cost savings for your business.
Key Features:
• Highly modular, high-performance platform - A wide range of LAN, WAN and
multiservice options to support converged branch, regional or headquarters
environments
• All-in-one voice, data and unified communications solution for enterprises – Nortel
SCS Server hosted on 4134 provides complete unified communications and data
networking solution for enterprise sites of up to 250 users by combining voice — call
server, conferencing, collaboration applications and PSTN gateway — with data and
security in an integrated, easy-to-manage platform.
• Only device of its kind to integrate Microsoft OCS services - Ideal for enterprises
considering deploying Microsoft OCS services in their remote branch sites
• Voice media gateway services - Enables connection to the Public Switched Telephone
Network (PSTN) or to traditional telephony devices
• Survivable voice services - Allows continued voice calling when the primary IP
connection is lost.
• Robust routing services - Full IPv4 and IPv6, BGP-4 and multicast implementation for
enterprise deployments
• Integrated Ethernet switching - High-density L2/L3 Gigabit, Fast Ethernet, as well as
Power over Ethernet. Up to 58 Gigabit or 72 Fast Ethernet ports supported.
• Wide range of WAN connectivity - Low and high-speed WAN options include serial,
T1/E1, DS3/T3, Channelized DS3/T3, HSSI and ISDN
• Integrated security - Stateful firewall and high-speed VPN encryption ensured the
integrity of both voice and data traffic
• High-reliability / resiliency - Hot-swappable modules, redundant power and
port/platform resiliency features deliver maximum uptime
• Unified Communications-ready platform - Superior small packet handling and low
latency ensures the quality of multimedia applications. Integrated VoIP and Microsoft
capabilities deliver on the promise of the unified communications branch.
For more details please refer Nortel SR 4134 Product Webpage
http://products.nortel.com/go/product_content.jsp?segId=0&catId=null&parId=0&prod_id=623
60&locale=en-US
7
Secure Router 2330
The Nortel Secure Router 2330 is a cost reduced 1RU version of 4134 with almost same
feature set and lower capacity.
For more details please refer Nortel SR 2330 Product Webpage
http://products.nortel.com/go/product_content.jsp?segId=0&catId=null&parId=0&prod_id=693
60&locale=en-US
Feature Description
The Secure Routers 4134 and 2330 combines high performance, robust routing, flexible
WAN and voice media gateway connectivity and is targeted at enterprise branch and remote
site environments. A rich suite of routing services and advanced WAN functionality makes
these Secure Routers ideal for high-speed Internet access, private line WAN connectivity, IP
Telephony and multimedia, IPSec VPN, stateful firewall and data applications. The SR
2330/4134 survivable branch solution for Nortel CS 1000 provides business continuity to the
branch office in the event of a WAN connection outage to corporate headquarters.
Multiservice Branch Router
Figure 1 shows a survivable branch office deployment with CS 1000 Call Server located at
the corporate main office or data center and Secure Router as branch office multi service
router providing data routing, security and survivable SIP-PSTN gateway.
Data routing services include a full IPv4 and IPv6 protocol set, including BGP-4 and
multicast capabilities. A full-function IPv6 implementation also enables deployment into
environments that require extended IP addressing with the same routing services.
Powerful, fully-integrated security features include VPN and firewalls for increased reliability
and user confidence. Capabilities include stateful packet firewall, detection and prevention of
more than 60 Distributed Denial of Service (DDoS) attacks, VPN hardware acceleration for
hub and spoke deployment over IPSec and VPN tunnels, and IPSec VPN data-encryption
services with AES, 3DES, DES, SHA-1, MD-5 and Diffie-Hellman support.
The SR also offers a set of integrated voice interfaces that allow connection to the public
switched telephone network (PSTN) as well as support of conventional TDM-based
telephony devices. T1/E1, FXS and FXO interfaces are all available for flexible telephony
connection with support for up to 128 simultaneous voice channels.
8
Survivable SIP PSTN Gateway
Figure 2 shows a survivable branch office deployment with CS 1000 Call Server located at
the corporate main office or data center and Secure Router providing survivable SIP-PSTN
gateway functionality complimenting the existing data infrastructure.
The SR 2330/4134 supports a variety of PSTN interfaces like T1/E1, BRI U, BRI S/T,
FXS/DID and FXO/CAMA for connectivity to PSTN and legacy PBXs and telephony devices.
Also supports a rich set of PSTN protocols including ISDN PRI, BRI, QSIG, T1 CAS, E1 R2
and analog signaling.
The Secure Router also includes a SIP Registrar and B2BUA based SIP Proxy which can
function as a backup SIP Server supporting up-to 300 SIP end-points including Nortel and
3rd-party SIP phones Nortel 1120E/1140E, Nortel 1535 Video phone, LG Nortel 6800/8800,
Polycom 330, SMC 3456, IP Dialog and Xlite. It can provide phone and call routing services
to the branch office when main office call server connectivity is lost and is already tested with
Nortel Call Servers and 3rd party Servers - CS 1000, CS 2100, CS 2000, A2E, SCS,
9
Microsoft OCS and Broadsoft/Sylantro. Other main features include Call Admission Control,
PSTN fallback and memory based load control.
10
Introduction
This document describes the quick start configuration of Nortel Secure Router 2330/4134
(Release 10.2) as survivable branch SIP-PSTN gateway for Nortel Communication Server
1000 (Release 6.0). For more information and detailed configuration guides on SR 2330, SR
4134 and CS 1000 go to the Nortel website:
www.nortel.com/support
Navigation
•
"SR 2330/4134 interoperability with CS 1000 (page 11)
•
"CS 1000 Configuration" (page 16)
•
"SR 2330/4134 Configuration" (page 35)
11
SR 2330/4134 interoperability with CS 1000
SR 2330/4134, CS 1000 components
The following diagram shows the main components of Secure Router 2330/4134 and
Communication Server 1000.
SR has two modules SIP Gateway (SIP GW) and SIP Survivability Module (SSM) that
together interworks with CS 1000 to provide SIP survivable gateway functionality at the
branch. SSM is a software-only subsystem on the Secure Router through which SIP calls are
routed to the CS 1000. This module includes SIP B2BUA based proxy and SIP Registrar. SIP
GW is software and hardware subsystem on the Secure Router that provides PSTN
connectivity. The User Agents (UA) are SIP endpoints.
For detailed information about SSM operation please refer to Secure Router Release 10.2
guide NN47263-510 Configuration — SIP Survivability.
For detailed information on SIP GW please refer to Secure Router Release 10.2 guide
NN47263-508 Configuration — SIP Media Gateway.
The main CS 1000 components are Call Server (CS), SIP Signaling Gateway (SSG), SIP
Line Gateway (SLG), SIP Proxy Server (SPS) and Network Routing Service (NRS). SSG
handles SIP trunking and SLG takes care of SIP endpoints or SIP Lines.
12
For detailed information on CS 1000 components and operation please refer to
Communication Server 1000 Release 6.0 user guides.
SSM Operation
The SSM operates in two modes - Normal (Connected) and Survivable (Isolated). In normal
mode, the SSM functions as an outbound proxy and proxies all SIP messages initiated from
the SIP phones (UA) and the SIP GW to the SLG located in the head office. SSM acts as a
B2BUA i.e. changes the Contact Header of SIP endpoint requests. Also the SIP endpoint
registrations to the SLG are “cached” locally. In survivable mode, the SSM supports SIP
server functionality to provide basic call features to the SIP endpoints at the branch, and also
supports local registrar functionality to store registrations.
SSM monitors the reachability of SLG by sending OPTIONS messages. If SLG is not
reachable or the link connected to SLG is down, SSM switches to the Survivable mode. The
SSM will continue to monitor the reachability of SLG as long as the link is up. Once it is
reachable, SSM will switch back to Normal mode.
SIP endpoints that have registered during Survivable mode will be registered with the SLG
after the Normal mode is established and next registration is attempted. SSM forces SIP
endpoints to register frequently (Default time 30 sec) in Survivable mode so that the
endpoints are registered to SLG as soon as SSM switches to Normal mode.
The above diagram shows the call flow of a SIP endpoint in branch, calling a SIP endpoint
connected to CS 1000 in Normal (Connected) mode. SSM proxies the calls to the SLG
received from the SIP endpoint. SSM also modifies the contact header in the INVITE
messages to point to the SSM bind IP address before forwarding the INVITE to the SLG to
Loading...