Polycom 4300T User Manual

User Guide

V2IU 4300T Converged

Network Appliance

October 2005

Trademark Information

Polycom®, the Polycom logo design, [and others that appear in your document] are registered trademarks of Polycom, Inc. [List other trademarks]™ are trademarks of Polycom, Inc. in the United States and various other countries. All other trademarks are the property of their respective owners.

4750 Willow Road Pleasanton, CA 94588-2708 USA

No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Polycom, Inc. Under the law, reproducing includes translating into another language or format.

As between the parties, Polycom, Inc. retains title to, and ownership of, all proprietary rights with respect to the software contained within its products. The software is protected by United States copyright laws and international treaty provision. Therefore, you must treat the software like any other copyrighted material (e.g. a book or sound recording).

Every effort has been made to ensure that the information in this manual is accurate. Polycom, Inc. is not responsible for printing or clerical errors. Information in this document is subject to change without notice.

Contents

1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

Contents

The 4300T Converged Network Appliance . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

T1 Wide Area Network (WAN) Access Router . . . . . . . . . . . . . . . . . . 1–1

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

VoIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

Quality of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

Call Quality Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Future-proof Scalability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Feature Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Front Panel LEDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–3

Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–4

Power Connector . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–4

Erase Button . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–4

Management console port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–4

T1/E1 WAN port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–5

Ethernet WAN port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–5

2 Getting Started . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2–1

Physical Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–1

Desktop Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–1

Wall-Mount Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–1

Administration of the 4300T . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–2

3 Configuring the 4300T . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–1

Configuration Guide For IP Centrex Applications . . . . . . . . . . . . . . . . . . . 3–2

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–3

Configuration Guide For Station Side IP PBX Applications . . . . . . . . . . . 3–5

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–6

Configuration Guide For Trunk Side IP PBX Applications . . . . . . . . . . . . 3–7

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–8

Configuration Guide For Hosted Video Applications . . . . . . . . . . . . . . . . 3–9

Configuration Guide For Enterprise Video Applications . . . . . . . . . . . . 3–11

User Guide V2IU 4300T Converged Network Appliance

System Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–13

Configure the LAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–13

Configuring VLANs in the 4300T . . . . . . . . . . . . . . . . . . . . . . . . . 3–14

Modify an Existing VLAN Configuration . . . . . . . . . . . . . . . . . . 3–16

Delete an Existing VLAN Configuration . . . . . . . . . . . . . . . . . . . 3–16

Assign the 4300T’s ALG to your Priority VLAN . . . . . . . . . . . . 3–17

Configure the WAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–17

Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–19

Frame Relay Mode and DLCI . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–19

Timing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–20

Payload Loopback . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–20

Configure the DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–20

Delete a DHCP IP Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–22

Disable The DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–22

Configure Hostname, SNMP and Remote Logging . . . . . . . . . . . . . 3–23

Configure SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–23

Disable SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–24

Configure Remote System Logging . . . . . . . . . . . . . . . . . . . . . . . 3–24

Disable Remote System Logging . . . . . . . . . . . . . . . . . . . . . . . . . . 3–24

Configure a local Hostname . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–25

Enable Mean Opinion Scoring (MOS) . . . . . . . . . . . . . . . . . . . . . 3–25

Set MOS Threshold . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–25

Change the Administration Password . . . . . . . . . . . . . . . . . . . . . . . . 3–26

VoIP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–26

Configure the VoIP ALG . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–27

Configure VoIP Subnet Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–29

Enter a VoIP Subnet Route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–30

Delete a VoIP Subnet Route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–30

Configure IP Phones, IADs or Softphones . . . . . . . . . . . . . . . . . . . . . 3–31

Data Networking Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–32

NAT for Data Traffic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–32

Configure Dynamic NAT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–33

Configure Static NAT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–33

Delete a Static NAT entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–34

Static IP routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–34

Configure the static route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–34

Delete the static route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–35

Firewall Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–35

Enable or disable the firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–36

Configure Basic settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–36

Configure Advanced Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–36

Remove Advanced Setting Entries . . . . . . . . . . . . . . . . . . . . . . . . 3–38

Contents

Traffic Management Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–38

Enable Traffic Shaping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–39

Optionally enable priority IP addresses . . . . . . . . . . . . . . . . . . . . . . . 3–40

Enable CAC . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–40

Determining the maximum number of concurrent calls . . . . . . 3–41

Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–41

A Closer Look at Traffic Management in the 4300T . . . . . . . . . . . . . 3–41

Classifying . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–42

Upstream Traffic Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–42

Priority classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–42

Scheduler . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–42

Traffic shaper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–42

Downstream Traffic Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–43

VoIP Survivability Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–44

Key benefits and features of VoIP survivability . . . . . . . . . . . . . . . . 3–44

How survivability works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–45

Platform Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–46

IU Converged Network Appliances . . . . . . . . . . . . . . . . . . . . . 3–46

IP Phones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–46

PSTN Gateways . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–46

Configuring VoIP Survivability in V

IU Appliances . . . . . . . . . . . . 3–46

Step 1 – Enable VoIP Survivability . . . . . . . . . . . . . . . . . . . . . . . . 3–47

Step 2 – Configure call processing server reachability settings

(optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–47

Step 3 - Specify the number of digits to use for local dialing . . 3–48 Step 4 - Configure the IP address of the local LAN side PSTN

gateway (optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–49

Step 5 - Configure call processing server redundancy . . . . . . . 3–50

4 System Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–1

Viewing Software Version, Hardware Platform and the LAN MAC Address 4–1

Viewing the ALG registration code . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Enter the Registration Code . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Viewing Networking Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Routing Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Link Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Interface Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Viewing Advanced System Information . . . . . . . . . . . . . . . . . . . . . . . . 4–4

System Uptime . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

Process Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

Memory Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

System Logging Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

User Guide V2IU 4300T Converged Network Appliance

Passive Voice Call Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

Accessing Troubleshooting Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

Verify Registered Voice and Video Devices . . . . . . . . . . . . . . . . . 4–6

Performing a Ping Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–7

Performing a Traceroute Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–7

Restarting Networking Processes . . . . . . . . . . . . . . . . . . . . . . . . . . 4–8

Rebooting the 4300T . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–8

5 Saving and Restoring the 4300T Configuration . . . . . . . . . . 5–1

The ewn Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–1

Create a Backup File and Save in Local Flash . . . . . . . . . . . . . . . . . . . 5–2

Copy a Backup File to a Remote TFTP Server . . . . . . . . . . . . . . . . . . . 5–2

Download a Backup File from a Remote TFTP Server . . . . . . . . . . . . 5–2

List the Available Backup Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–2

Delete a Backup File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–3

Load a Backup File so that it Becomes the Running Configuration . 5–3

6 Upgrading the 4300T . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6–1

Upgrade Procedure for Software Revision 1.3.11 or Later . . . . . . . . . . . . 6–1

Appendix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Appendix–1

Troubleshooting Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–1

Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–2

Appendix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Appendix–3

Neighboring Path Navigator Gatekeeper support . . . . . . . . . . . Appendix–3

Example 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–3

V2IU A . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–5

Gatekeeper A . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–5

Gatekeeper X . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–5

Endpoints . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–6

Dialing plans . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–6

Example 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–7

V2IU A . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–8

Gatekeeper A . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–8

Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–9

VoIP ALG – H323 Settings . . . . . . . . . . . . . . . . . . . . . . . Appendix–10

V2IU B . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–12

Gatekeeper B . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–12

Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–13

VoIP ALG – H323 settings . . . . . . . . . . . . . . . . . . . . . . . Appendix–14

V2IU C . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–16

Contents

Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–16

VoIP ALG – H323 Settings . . . . . . . . . . . . . . . . . . . . . . . Appendix–17

Endpoints . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–19

Dialing plans . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–19

Path Navigator . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–20

Regulatory Notices . . . . . . . . . . . . . . . . . Regulatory Notices–1

END-USER LICENSE AGREEMENT FOR POLYCOM® SOFTWARE . Regulatory Notices–1

FCC PART 15 NOTICE . . . . . . . . . . . . . . . . . . . . . Regulatory Notices–11

FCC PART 68 NOTICE TO USERS OF DIGITAL SERVICE Regulatory Notices–11

INDUSTRY CANADA (IC) NOTICE . . . . . . . . . Regulatory Notices–12

User Guide V2IU 4300T Converged Network Appliance

Introduction

The 4300T Converged Network Appliance

The V2IU 4300T is an intelligent, all-in-one networking solution for enterprises and service providers. It reduces costs by simplifying the deployment, management and security of converged voice, video and data networks. The 4300T provides the following important functions for converged networks:

T1 Wide Area Network (WAN) Access Router

The 4300T provides an integrated T1 CSU/DSU for small and medium office connectivity.

Security

VoIP

Quality of Service

A stateful packet inspection firewall is used in combination with a VoIP application layer gateway to provide comprehensive “media-aware” security. The 4300T also supports IPSec for secure site-to-site networking.

The 4300T resolves NAT/FW traversal problems for SIP, MGCP and H.323 tr affi c. It allo ws a s ingl e publ ic IP add ress t o be u sed f or mu ltip le VoI P cli ents . VoIP survivability is also provided by the 4300T so that local SIP PSTN gateways can be used for inbound/outbound calling during WAN link failures.

The 4300T maximizes WAN link utilization while optimizing voice quality using prioritization and shaping.

1 - 1

User Guide V2IU 4300T Converged Network Appliance

Call Quality Monitoring

Passive call quality monitoring for each SIP or MGCP voice call includes statistics needed to enforce SLAs and resolve networking problems that negatively affect call quality.

Future-proof Scalability

The 4300T is a powerful, flexible platform that can be deployed initially as a low-cost WAN access router and then licensed through software for more advanced VoIP features and increased call performance. It is the ideal platform for service providers offering DIA, hosted VoIP and managed security services or enterprises migrating to converged voice and data networks.

Feature Summary

• VoIP

— SIP, MGCP(for voice) and H.323 (for video) application layer gateway

enables a single public IP address to be used for multiple VoIP endpoints

— VoIP survivability provides local call switching to PSTN gateways

during WAN link failures (SIP only)

• QoS

— Class based queuing/prioritization

— Diffserv marking and policing

— Traffic shaping

— VoIP call admission control prevents oversubscription of priority

queue

• Security

— Stateful packet inspection firewall

— VoIP aware firewall dynamically provisions and closes UDP ports

used for VoIP calls

— IPSec: 3DES, SHA-1

— NAT/PAT server hides enterprise LAN topology

• Passive Call Quality Monitoring

1 - 2

— Per call statistics include mean opinion score (average and minimum),

jitter, latency, packet loss and much more

— Alarms for poor MOS scores

— Active call count indicators

Front Panel LEDs

The LEDs display real-time information for key functions of the 4300T. They are as follows:

LED Label Activity Description

Power Off Power switch off (or no power from wall)

Green Power is supplied to the unit

Introduction

EM001

Status Off Self-tests have failed. The unit has not booted.

Green Self-tests completed successfully Flashing Indicates configuration is being written to permanent storage or an upgrade is

in progress

T1/E1 Off The T1 is in an alarm state and not synchronized

Green T1/E1 in-sync, no alarms

LAN Link/Act Flashing indicates activity. On indicates a connection

100Mbps On = 100Mbps link speed, Off = 10Mbps link speed

Ethernet WAN Link/Act Flashing indicates activity. On indicates a connection

100Mbps On = 100Mbps link speed, Off = 10Mbps link speed

1 - 3

User Guide V2IU 4300T Converged Network Appliance

Back Panel

The back panel of the 4300T contains the following (left to right):

• Power connector

• Erase button

• Power connector

• 4 switched LAN Ethernet ports

• Management console port

• T1 WAN port (RJ-48 with built-in CSU/DSU)

EM002

• Ethernet WAN port

Power Connector

The 4300T comes with an AC power cord and power adapter for connecting to this port. Little force is necessary when the plug is properly positioned.

Erase Button

To erase any custom configuration and restore the 4300T to its factory default state depress the erase button once and press again before 2 seconds expires.

Warning

Using the Erase button as outlined above means any configuration made to the 4300T will be lost. Additionally the VoIP ALG registration code must be re-entered in the 4300T as covered in Chapter 4: System Diagnostics, viewing the ALG registration code. Erasing the configuration means that IP phones installed behind the 4300T will not work and Internet connectivity or network access for PCs will be down until the system is reconfigured.

Management console port

This port is used to establish a local console session with the 4300T using a VT100 terminal or emulation program. The cable required is a straight-through 8-wire cable. The serial port uses a baud rate of 9600, 8 data

bits, 1 stop bit and no parity.

1 - 4

T1/E1 WAN port

Introduction

This port is used for debug or local diagnostic purposes only. Primary configuration of the 4300T is performed from a web browser as covered in

Chapter 3.

The T1 WAN interface with the following features:

• Fully integrated CSU/DSU

• T1 support

• Fractional T1 support

• Layer 2 protocol support for: HDLC, Cisco HDLC (cHDLC), PPP, Frame

Relay

• On-board RJ-48 connector for easy direct connection

• T1/E1 framer and transceiver

— B8ZS/HDB3 zero suppression

— Response to Inband Loop codes

Ethernet WAN port

— Manual payload loop through the GUI

• External transmit clock input and receive clock output headers

• Timing: internal or external (loop times from the network)

• Provides long haul CSU or short haul DSU signaling

• Meets FCC part 68 protection requirements

The WAN port is used for connection to a data T1 line. The device at the far end of the line is a router or other device expecting TCP/IP data. Individual DS-0 channels on the T1 are not used to carry uncompressed voice.

The Ethernet 10/100 Mbps port on the 4300T can be used as a WAN interface as an alternative to the T1 interface. This port is typically used when connecting the 4300T to an existing T1/E1 WAN router, cable or xDSL modem.

1 - 5

User Guide V2IU 4300T Converged Network Appliance

1 - 6

Getting Started

Physical Installation

The 4300T is designed for desktop, rack or wall-mount installation. Please observe the following guidelines when installing the system:

• Never assume that the AC cord is disconnected from a power source. Always check first.

• Always connect the AC power cord to a properly grounded AC outlet to avoid damage to the system or injury.

Ensure that the physical location of the installation has adequate air circulation and meets the minimum operating conditions as provided in the environmental specifications for the system.

Warning

Secure the power supply using a fastener or nearby shelf so that it does not hang from the power connector.

Desktop Installation

1. Remove the 4300T and accessories from the shipping container.

2. Place the 4300T on a flat, dry surface such as a desktop, shelf or tray.

3. Connect the power and network cables to the appropriate ports on the

Caution

To reduce the risk of fire, use only 26 AWG or larger wire (e.g. 24, 22, 20, etc.) to connect the T1 port on your unit to an RJ-45 jack.

Wall-Mount Installation

The 4300T can be wall-mounted using the two mounting brackets on the bottom of the appliance. We recommend using two round or pan head screws.

back of the system.

2 - 1

User Guide V2IU 4300T Converged Network Appliance

Install two screws 4 14/16” horizontally apart on a wall or other vertical surface. The screws should protrude from the wall so that you can fit the appliance between the head of the screw and the wall.

1. If you install the screws in drywall use hollow wall anchors to ensure that the unit does not pull from the wall due to prolonged strain from the cable and power connectors.

2. Remove the 4300T and accessories from the shipping container.

3. Hang the 4300T on the wall.

4. Connect the power and network cables to the appropriate ports on the

back of the system.

Warning

Caution

Secure the power supply using a fastener or nearby shelf so that it does not hang from the power connector.

To reduce the risk of fire, use only 26 AWG or larger wire (e.g. 24, 22, 20, etc.) to connect the T1 port on your unit to an RJ-45 jack.

Administration of the 4300T

The 4300T is configured using a web browser such as Internet Explorer or Netscape Navigator. The 4300T is shipped with a pre-configured IP address for its LAN port of 192.168.1.1. To connect to the 4300T, do the following:

1. Connect a PC using an IP address of 192.168.1.2 and subnet mask of

255.255.255.0 to LAN port 4 of the 4300T.

2. Launch a web browser on the PC and enter the URL string: 192.168.1.1. Press Return. The initial 4300T main configuration menu appears.

3. Select the Network link - enter the username root and the password default to log into the system.

2 - 2

Getting Started

Note

For secure management of your network, be sure to change the default userid and password as described under Change the Administration Password.

4. Continue to configure the system using the information provided in

Chapter 3.

2 - 3

User Guide V2IU 4300T Converged Network Appliance

2 - 4

Configuring the 4300T

The 4300T is a flexible, easy to use converged network appliance that provides many critical networking functions for IP based voice, video and data. It can be installed in several different topologies:

• At the customer premise for IP Centrex and hosted video applications

• At the station side of enterprise IP PBXs

• At the trunk side of enterprise IP PBXs

• At the public/private IP address boundary for enterprise video

applications

Most users will follow the steps provided in the “Configuring The Systems Settings” section of this manual to initially connect the 4300T into their IP network. The remainder of the configuration can be different based on the application, VoIP topology and presence of other networking equipment such as firewalls or DHCP servers. In general, however, the steps used to configure the 4300T are:

Step Task

1 System configuration 2 VoIP configuration 3 Data networking configuration 4 Firewall configuration 5 Traffic management configuration 6 VoIP survivability configuration

Some of the steps are optional depending on your particular application. We have provided configuration guidelines below for each of the application types supported by the 4300T.

3 - 1

User Guide V2IU 4300T Converged Network Appliance

Configuration Guide For IP Centrex Applications

A typical 4300T installation for an IP Centrex application requires no external router or firewall. The 4300T WAN port is connected directly to the T1/E1 line and the LAN port(s) are connected directly to enterprise devices and/or Ethernet switches.

VoIP Operations Center

Softswitch

Application Server

NMS

Gateway

PSTN

Enterprise Enterprise

T1/FT1 T1/FT1

4300T

PSTN

4300T

Gateway

VoIP signaling is performed in the service provider network via a softswitch and the 4300T acts as a proxy for the voice devices installed in the enterprise LAN. In this configuration a single public IP address is used to proxy for all of the IP phones and to route to multiple PC’s installed on the LAN.

The 4300T performs the following functions in this application:

• WAN/LAN IP routing.

EM00

3 - 2

• Traffic shaping and priority queuing to guarantee high quality voice traffic. These mechanisms protect voice and data traffic from contending for the same network resources to guarantee low latency and the highest call quality possible for VoIP traffic. At the same time they ensure the best utilization of WAN bandwidth by enabling data traffic to burst up to full line rate in the absence of voice calls. Precedence is automatically given to traffic coming from IP phones and other devices using the 4300T’s Application Layer Gateway function.

Configuring the 4300T

• NAT/PAT translation for IP phones and PC’s. This allows a single public IP address to be used on the WAN link to represent all of the private IP addresses assigned to the LAN IP phones and PC’s.

• Static NAT entries. This enables the customer to use a WAN public IP address for data servers (web, mail, ftp, etc.) connected behind the 4300T. These servers can then be configured with private IP addresses for additional security.

• A “VoIP” aware firewall. A full Layer 7 gateway for voice traffic and a stateful packet inspection firewall for data traffic.

• Call Admission Control (CAC). CAC uses a deterministic algorithm to decide when there are insufficient network resources available to adequately support new calls and then return the equivalent of a “fast busy” to new call requests.

• DHCP server and TFTP relay. These features are used to simplify and expedite the IP configuration of phones and PC’s. This also includes VoIP signaling gateway information (MGCP, SIP, H.323 and SCCP).

• Call quality monitoring (using MOS, jitter, latency, packet loss and much more) and test tools.

• VoIP survivability. Provides call switching to an LAN based PSTN gateway during WAN outages.

Configuration Outline

Configure For IP Centrex

Task Subtask

System Configuration configure LAN/WAN interface Yes

set ethernet link rate Optional enable the DHCP server Optional but recommended configure SNMP Optional

VoIP Configuration enable the VoIP ALG Yes

configure a VoIP subnet route Optional

Data Networking Configuration dynamic NAT Optional but recommended

static NAT Optional static IP routing Optional

Firewall Configuration enable the data firewall Yes

Application?

configure basic settings Optional configure advanced settings Optional

3 - 3

User Guide V2IU 4300T Converged Network Appliance

Traffic Management

enable traffic shaping Yes

Configuration

enable Call Admission Control Optional

VoIP Survivability enable VoIP survivability Yes

configure call processing server

Optional

reachability settings specify the number of digits to use for

Optional

local dialing configure the IP address of the local LAN

Optional

side PSTN gateway configure call processing server

Optional

redundancy

3 - 4

Configuring the 4300T

Configuration Guide For Station Side IP PBX Applications

Most private enterprise VoIP networks use an IP PBX at the corporate headquarters location to provide voice switching between headquarters, branch offices and the PSTN. The 4300T is used in these environments to securely connect branch office employees to the IP PBX installed in the corporate headquarters location.

Headquarters

IP PBX

4300T

PSTN

Branch Office Branch Office

4300T

T1/FT1 T1/FT1

4300T

Gateway

EM004

The installation of an 4300T on the station side of an enterprise IP PBX is very similar to the IP Centrex application above. The branch office is connected to the corporate network using a private T1/E1 link connected directly to the WAN port of the 4300T. The LAN port(s) of the 4300T are connected directly to enterprise devices and/or Ethernet switches.

The IP PBX in the corporate headquarters location performs VoIP signaling and the 4300T acts as a proxy for the voice devices installed at the branch office. Please note that in the configuration the 4300T located at the Headquarters location is acting as a WAN router only. The 4300Ts installed at the brand offices perform the following functions in this application:

• WAN/LAN IP routing.

3 - 5

User Guide V2IU 4300T Converged Network Appliance

• NAT/PAT translation for IP phones and PC’s. This allows a single IP address to be used on the WAN link to represent all of the private IP addresses assigned to the LAN IP phones and PC’s.

• A “VoIP” aware firewall. A full layer 7 gateway for voice traffic and a stateful packet inspection firewall for data traffic.

• Call quality monitoring and test tools.

• VoIP survivability. Provides call switching to an LAN based PSTN

gateway during WAN outages.

Configuration Outline

Configure For Station Side IP PBX

Task Subtask

System Configuration configure LAN/WAN interface Yes

set ethernet link rate Optional enable the DHCP server Optional but

configure SNMP Optional

VoIP Configuration enable the VoIP ALG Yes

configure a VoIP subnet route Optional

Data Networking Configuration dynamic NAT Optional but

Application?

recommended

3 - 6

static NAT Optional

static IP routing Optional

Firewall Configuration enable the data firewall Yes

configure basic settings Optional configure advanced settings Optional

Configuring the 4300T

Traffic Management

enable traffic shaping Yes

Configuration

enable Call Admission Control Optional

VoIP Survivability enable VoIP survivability Yes

configure call processing server reachability

Optional

settings specify the number of digits to use for local

Optional

dialing configure the IP address of the local LAN side

Optional

PSTN gateway configure call processing server redundancy Optional

Configuration Guide For Trunk Side IP PBX Applications

Companies with existing IP-based WAN links for inter-office voice and data communications can use the 4300T as a traffic shaper to meet the stringent jitter, latency and packet loss requirements for toll quality voice. The 4300T is deployed at the edge of the WAN in both headquarters and branch office locations, as shown below.

Headquarters

IP PBX

4300T

Frame Relay

IP Network

T1/E1

Branch Office

4300T

IP PBX

Branch Office

4300T

IP PBX

EM005

3 - 7

User Guide V2IU 4300T Converged Network Appliance

The 4300T performs WAN/LAN IP routing and traffic management functions in this application. In particular, it provides prioritization to ensure voice packets are not delayed or dropped while allowing data traffic to use all remaining bandwidth.

Configuration Outline

Task Subtask

System Configuration configure LAN/WAN interface Yes

set ethernet link rate Optional enable the DHCP server Not required configure SNMP Optional

VoIP Configuration enable the VoIP ALG Not required

configure a VoIP subnet route Not required

Configure For Trunk Side IP PBX Application?

Data Networking Configuration

Firewall Configuration enable the data firewall Not required

Traffic Management Configuration

dynamic NAT Not required

static NAT Not required static IP routing Not required

configure basic settings Not required configure advanced settings Not required enable traffic shaping Yes

enable Call Admission Control

Not required

3 - 8

Configuring the 4300T

Configuration Guide For Hosted Video Applications

A typical 4300T installation for hosted video applications is depicted in the diagram below. In this scenario, the 4300Ts are used to connect all of the video endpoints to the Gatekeeper. The video endpoints should be configured to point to the LAN address of the 4300T as the Gatekeeper and the 4300T will proxy RAS and call setup messages to the Gatekeeper

Service Provider

H.323

Gatekeeper

SIP Voice

V500

NMS

Hotspot

NAT/Firewall

User

T-1/E-1 NxT-1/E-1

Company A Company B

4300T

Phone

Laptop

Softswitch

Public IP

Network

Aggregation

Gateway MCU

5300-S

Aggregation Router

Router

H.323 Video

Endpoint

Phone

PSTN

ISDN,

PSTN Network

PSTN

5300-E

Gateway

H.323 Video Endpoint

EM008B

The 4300T is installed at the customer premises and is used as a demarcation point for the video service by providing the following functions:

• WAN/LAN IP routing.

3 - 9

User Guide V2IU 4300T Converged Network Appliance

• Traffic shaping and priority queuing to guarantee high quality video traffic. These mechanisms protect video and data traffic from contending for the same network resources to guarantee low latency and the highest call quality possible for voice and video traffic. At the same time they ensure the best utilization of WAN bandwidth by enabling data traffic to burst up to full line rate in the absence of video calls. Precedence is automatically given to traffic coming from video endpoints and other devices using the 4300T’s Application Layer Gateway function.

• Video NAT/PAT translation for video endpoints and PC’s. This allows a single IP address to be used on the WAN link to represent all of the private IP addresses assigned to the LAN video endpoints and PC’s.

• A video aware firewall. A full layer 7 gateway for video traffic and a stateful packet inspection firewall for data traffic

• Call Admission Control (CAC). CAC uses a deterministic algorithm to decide when there are insufficient network resources available to adequately support new video calls and then return the equivalent of a “fast busy” to new call requests.

Task Subtask

Configure For Hosted Video Applications?

System Configuration configure LAN/WAN interface Yes

set ethernet link rate Optional enable the DHCP server Optional configure SNMP Optional

VoIP Configuration enable the VoIP ALG Yes

configure a VoIP subnet route Optional

Data Networking Configuration dynamic NAT Optional but recommended

static NAT Optional static IP routing Optional

Firewall Configuration enable the data firewall Yes

configure basic settings Optional configure advanced settings Optional

Traffic Management Configuration

enable traffic shaping Yes

enable Call Admission Control Optional

3 - 10

Configuring the 4300T

Configuration Guide For Enterprise Video Applications

A typical 4300T installation for enterprise video applications is depicted in the diagram below. In this scenario, the 4300Ts are used to connect all of the video endpoints to the Gatekeeper. The video endpoints should be configured to point to the LAN address of the 4300T as the Gatekeeper and the 4300T will proxy RAS and call setup messages to the Gatekeeper.

Headquarters

H.323

Gatekeeper

Gateway

Application

Server

PSTN

Branch Office Company B

Softswitch

5300-S 5300-E

T-1/E-1 NxT-1/E-1

4300T

H.323

NMS

Aggregation Router

Network

Aggregation

Router

H.323 Endpoint

PC PC

IP Phone

IP PhoneIP Phone

PSTNPSTN

5300-E

Gateway

IP Phone

EM009A

Laptop

IP Phone

The 4300T is installed at the private/public IP address boundary and provides the following functions:

• WAN/LAN IP routing.

• Traffic shaping and priority queuing to guarantee high quality video

traffic. These mechanisms protect video and data traffic from contending for the same network resources to guarantee low latency and the highest

3 - 11

User Guide V2IU 4300T Converged Network Appliance

call quality possible for voice and video traffic. At the same time they ensure the best utilization of WAN bandwidth by enabling data traffic to burst up to full line rate in the absence of video calls. Precedence is automatically given to traffic coming from video endpoints and other devices using the 4300T’s Application Layer Gateway function.

• A video aware firewall. A full layer 7 gateway for video traffic and a stateful packet inspection firewall for data traffic

Task Subtask

System Configuration configure LAN/WAN interface Yes

Configure For Hosted Video Applications?

set ethernet link rate Optional enable the DHCP server Optional configure SNMP Optional

VoIP Configuration enable the VoIP ALG Yes

configure a VoIP subnet route Optional

Data Networking Configuration dynamic NAT Optional but recommended

static NAT Optional static IP routing Optional

Firewall Configuration enable the data firewall Yes

configure basic settings Optional configure advanced settings Optional

Traffic Management Configuration

enable traffic shaping Yes

enable Call Admission Control Optional

3 - 12

+ 88 hidden pages