Polycom V2IU 4350 User Manual

User Manual

V2IU 4350 Converged

Network Appliance

V7.2.2 — May 2007

Trademark Information

Polycom®, the Polycom logo design, [and others that appear in your document] are registered trademarks of Polycom,
Inc. [List other trademarks]™ are trademarks of Polycom, Inc. in the United States and various other countries. All other
trademarks are the property of their respective owners.

© 2007 Polycom, Inc. All rights reserved.
Polycom Inc.

4750 Willow Road
Pleasanton, CA 94588-2708
USA

No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for
any purpose, without the express written permission of Polycom, Inc. Under the law, reproducing includes translating
into another language or format.

As between the parties, Polycom, Inc. retains title to, and ownership of, all proprietary rights with respect to the software
contained within its products. The software is protected by United States copyright laws and international treaty
provision. Therefore, you must treat the software like any other copyrighted material (e.g. a book or sound recording).

Every effort has been made to ensure that the information in this manual is accurate. Polycom, Inc. is not responsible
for printing or clerical errors. Information in this document is subject to change without notice.

Contents

1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–1

2 Getting Started . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2–1

The V2IU 4350 Converged Network Appliance . . . . . . . . . . . . . . . . . . . . . 1–1

T1 Wide Area Network (WAN) Access Router . . . . . . . . . . . . . . . . . . 1–1

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

VoIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Quality of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Call Quality Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Future-proof Scalability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Feature Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–2

Front Panel LEDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–3

Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1–4

Physical Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–1

Required Tools and Materials . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–1

Desktop Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–2

Wall-Mount Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–2

Rack-Mount Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–3

Connecting the Power and Cables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–4

Administration of the 4350 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2–4

3 Configuring the V2IU 4350 . . . . . . . . . . . . . . . . . . . . . . . . 3–1

Configuration Guide For IP Centrex Applications . . . . . . . . . . . . . . . . . . . 3–2

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–3

Configuration Guide For Station Side IP PBX Applications . . . . . . . . . . . 3–4

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–5

Configuration Guide For Trunk Side IP PBX Applications . . . . . . . . . . . . 3–6

Configuration Outline . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–7

Configuration Guide For Hosted Video Applications . . . . . . . . . . . . . . . . 3–8

Configuration Guide For Enterprise Video Applications . . . . . . . . . . . . 3–10

1

User Manual V2IU 4350 Converged Network Appliance

System Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–12

Configure the LAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–12

Configuring VLANs in the 4350 . . . . . . . . . . . . . . . . . . . . . . . . . . 3–13

Modify an Existing VLAN Configuration . . . . . . . . . . . . . . . . . . 3–15

Delete an Existing VLAN Configuration . . . . . . . . . . . . . . . . . . . 3–15

Assign the 4350’s ALG to your Priority VLAN . . . . . . . . . . . . . 3–16

Configure the WAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–16

Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–18

Frame Relay Mode and DLCI . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–18

Timing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–19

Payload Loopback . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–19

Configure the DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–19

Delete a DHCP IP Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–21

Disable The DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–21

Configure Hostname, SNMP and Remote Logging . . . . . . . . . . . . . 3–22

Configure SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–22

Disable SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–23

Configure Remote System Logging . . . . . . . . . . . . . . . . . . . . . . . 3–23

Disable Remote System Logging . . . . . . . . . . . . . . . . . . . . . . . . . . 3–23

Configure a local Hostname . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–24

Enable Mean Opinion Scoring (MOS) . . . . . . . . . . . . . . . . . . . . . 3–24

Set MOS Threshold . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–24

Change the Administration Password . . . . . . . . . . . . . . . . . . . . . . . . 3–24

Read-only User . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–25

Enabling a Read-only User . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–25

Subinterfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–26

How Subinterfaces Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–26

Configuring Subinterfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–27

ToS Byte Setting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–28

How the ToS Byte Setting Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–28

Viewing or Changing the ToS Byte Setting . . . . . . . . . . . . . . . . . . . . 3–28

H.323 Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–30

H.323 Activity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–35

H.323 Alias Manipulation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–35

H.323 Neighboring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–37

Regular Expressions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–39

Forwarding Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–40

How Forwarding Rules Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–40

Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–40

Configuring Forwarding Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–41

Peering Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–43

How Peering Proxy Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–43

2

Contents

Configuring Peering Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–47

Adding an H.323 Prefix Entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–48

Clients List Lock . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–49

Enabling the Clients List Lock . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–50

H.323 Activity Monitor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–51

Type of Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–52

Call Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–52

Call Termination . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–54

Viewing the H.323 Activity Monitor . . . . . . . . . . . . . . . . . . . . . . . . . . 3–55

VoIP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–56

Configure the VoIP ALG . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–57

Configure VoIP Subnet Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–59

Enter a VoIP Subnet Route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–60

Delete a VoIP Subnet Route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–60

Configure IP Phones, IADs or Softphones . . . . . . . . . . . . . . . . . . . . . 3–61

Data Networking Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–62

NAT for Data Traffic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–62

Configure Dynamic NAT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–63

Configure Static NAT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–63

Delete a Static NAT entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–64

Static IP routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–64

Configure the static route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–64

Delete the static route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–65

Firewall Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–65

Enable or disable the firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–66

Configure Basic settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–66

Configure Advanced Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–66

Remove Advanced Setting Entries . . . . . . . . . . . . . . . . . . . . . . . . 3–68

Traffic Management Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–68

Enable Traffic Shaping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–69

Optionally enable priority IP addresses . . . . . . . . . . . . . . . . . . . . . . . 3–70

Enable CAC . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–70

Determining the maximum number of concurrent calls . . . . . . 3–71

Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–71

A Closer Look at Traffic Management in the 4350 . . . . . . . . . . . . . . 3–71

Classifying . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–72

Upstream Traffic Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–72

Priority classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–72

Scheduler . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–72

Traffic shaper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–72

Downstream Traffic Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3–73

3

User Manual V2IU 4350 Converged Network Appliance

4 System Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–1

Viewing Software Version, Hardware Platform and the LAN MAC Address
4–1

Viewing the ALG registration code . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Enter the Registration Code . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Viewing Networking Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–2

Routing Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Link Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Interface Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–3

Viewing Advanced System Information . . . . . . . . . . . . . . . . . . . . . . . . 4–4

System Uptime . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

Process Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

Memory Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–4

System Logging Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

Passive Voice Call Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

Accessing Troubleshooting Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–5

Verify Registered Voice and Video Devices . . . . . . . . . . . . . . . . . 4–6

Performing a Ping Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–7

Performing a Traceroute Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–7

Restarting Networking Processes . . . . . . . . . . . . . . . . . . . . . . . . . . 4–8

Rebooting the 4350 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4–8

5 Saving and Restoring the V2IU 4350 Configuration . . . . . . 5–1

The ewn Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–1

Create a Backup File and Save in Local Flash . . . . . . . . . . . . . . . . . . . 5–2

Copy a Backup File to a Remote TFTP Server . . . . . . . . . . . . . . . . . . . 5–2

Download a Backup File from a Remote TFTP Server . . . . . . . . . . . . 5–2

List the Available Backup Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–2

Delete a Backup File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5–3

Load a Backup File so that it Becomes the Running Configuration . 5–3

6 Upgrading the V2IU 4350 . . . . . . . . . . . . . . . . . . . . . . . . . 6–1

Upgrade Procedure for Software Revision 1.3.11 or Later . . . . . . . . . . . . 6–1

Appendix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Appendix–1

Troubleshooting Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–1

Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Appendix–2

Regulatory Notices . . . . . . . . . . . . . . . . . Regulatory Notices–1

END-USER LICENSE AGREEMENT FOR POLYCOM® SOFTWARE .
Regulatory Notices–1

4

Contents

FCC PART 68 NOTICE TO USERS OF DIGITAL SERVICE Regulatory
Notices–10

INDUSTRY CANADA (IC) NOTICE . . . . . . . . . . . . . Regulatory Notices–11

5

User Manual V2IU 4350 Converged Network Appliance

6

Introduction

The V2IU 4350 Converged Network Appliance

The V2IU 4350 is an intelligent, all-in-one networking solution for enterprises
and service providers. It reduces costs by simplifying the deployment,
management and security of converged voice, video and data networks. The
4350 provides the following important functions for converged networks:

T1 Wide Area Network (WAN) Access Router

The 4350 provides an integrated T1 CSU/DSU for small and medium office
connectivity.

1

Note

The 4350E is designed for use in Australia, New Zealand, Korea and Japan. The
T1 port on the 4350E is functionally disabled through software. The T1 port should
not be connected to the telco network.

• Fully integrated CSU/DSU

• T1 support

• Fractional T1 support

• Layer 2 protocol support for: HDLC, Cisco HDLC (cHDLC), PPP, MLPPP,

MLPPPoFR, Frame Relay

• On-board RJ-48 connector for easy direct connection

• T1/E1 framer and transceiver

— B8ZS/HDB3 zero suppression

— Response to Inband Loop codes (ANSI)

— Manual payload loop through the GUI

• External transmit clock input and receive clock output headers

• Timing: internal or external (loop times from the network)

• Provides long haul CSU or short haul DSU signaling

1 - 1

User Manual V2IU 4350 Converged Network Appliance

• Meets FCC part 68 protection requirements

Security

A stateful packet inspection firewall is used in combination with a VoIP
application layer gateway to provide comprehensive “media-aware” security.
The 4350 also supports IPSec for secure site-to-site networking.

VoIP

The 4350 resolves NAT/FW traversal problems for SIP, MGCP and H.323
traffic. It allows a single public IP address to be used for multiple VoIP clients.

Quality of Service

The 4350 maximizes WAN link utilization while optimizing voice quality
using prioritization and shaping.

Call Quality Monitoring

Passive call quality monitoring for each SIP or MGCP voice call includes
statistics needed to enforce SLAs and resolve networking problems that
negatively affect call quality.

Future-proof Scalability

The 4350 is a powerful, flexible platform that can be deployed initially as a
low-cost WAN access router and then licensed through software for more
advanced VoIP features and increased call performance. It is the ideal
platform for service providers offering DIA, hosted VoIP and managed
security services or enterprises migrating to converged voice and data
networks.

Feature Summary

• VoIP

— SIP, MGCP (for voice) and H.323 (for video) application layer gateway

enables a single public IP address to be used for multiple VoIP
endpoints

1 - 2

• QoS

— Class based queuing/prioritization

Introduction

— Diffserv marking and policing

— Traffic shaping

— VoIP call admission control prevents oversubscription of priority

queue

• Security

— Stateful packet inspection firewall

— VoIP aware firewall dynamically provisions and closes UDP ports

used for VoIP calls

— IPSec: 3DES, SHA-1

— NAT/PAT server hides enterprise LAN topology

• Passive Call Quality Monitoring

— Per call statistics include mean opinion score (average and minimum),

jitter, latency, packet loss and much more

— Alarms for poor MOS scores

— Active call count indicators

Front Panel LEDs

LED Label Activity Description

A Power Off Power switch is off (or no power from the AC outlet)

B Status Off The unit could not boot up because of self test

C T1 Off The T1 is in an alarm state and not synchronized

The LEDs display real-time information for key functions of the 4350. They are
as follows:

Green Power is supplied to the unit

failure
Green Self test passed
Flashing Green Configuration is being written to permanent storage

or an upgrade is in progress

Green T1 is in sync and no alarms are reported

1 - 3

User Manual V2IU 4350 Converged Network Appliance

Back Panel

The back panel of the 4350E contains the following connections:

Name Description

A Power Connector Accepts the plug from the supplied power cord to connect the unit to an AC

power source

B 10/100 Mbps LAN Ports 4 x Local Area Network (LAN) ports to connect the IP phones or an

Ethernet switch. Unit can also be configure through any of these ports using

the web interface
C USB Ports 2 x USB ports (Not Used)
D Ethernet WAN Port Can be used as an alternative to the T1 WAN ports. This port is typically

used when connecting the 4350 to an existing T1/E1 WAN router, cable or

xDSL modem.
E Management Console Port This port is used to establish a local console session with the 4350 using a

VT100 terminal or emulation program. The cable required is a

straight-through 8-wire cable. The serial port uses a baud rate of 9600, 8

data bits, 1 stop bit and no parity.

This port is used for debug or local diagnostic purposes only. Primary

configuration of the 4350 is performed from a web browser as covered in

VOS User Manual
F Erase Button Press the Erase button twice in quick succession to reset the CLI password

to the factory default.

Press the Erase button three times in quick succession to reset the

Polycom V2IU 4350 to the factory default. This will reset all passwords and

erase all prior configurations.The default LAN address will now be

192.168.1.1.

G T1/E1 W AN T1/E1 port is used to connect to a data T1 line. The device at the far end of

the line is a router or other device expecting TCP/IP data. Individual DS-0

channels on T1 are not used to carry uncompressed voice.

1 - 4

Getting Started

Physical Installation

The V2IU 4350 is designed for desktop, rack or wall-mount installation. Please
observe the following guidelines when installing the system:

• Never assume that the AC cord is disconnected from a power source.
Always check first.

• Always connect the AC power cord to a properly grounded AC outlet to
avoid damage to the system or injury.

Ensure that the physical location of the installation has adequate air circulation
and meets the minimum operating conditions as provided in the
environmental specifications for the system.

2

Warning

Secure the power supply using a fastener or nearby shelf so that it does not hang
from the power connector.

Required Tools and Materials

The following items are required:

• If the unit is to be mounted on the wall:

— 1 Flat or Phillips screw driver

— 2 round or flat head Phillips or slotted screws - 1 ½ inch long

— 2 hollow wall anchors

• If the unit will be mounted in a shelf:

— 1 Flat or Phillips screw driver

2 - 1

User Manual V2IU 4350 Converged Network Appliance

• If the T1/E1 port will be used to connect to WAN:

— T1 cable to connect the T1/E1 port to a T1 line.

Warning

To reduce the risk of fire, use only 26 AWG or larger wire (e.g. 24, 22, 20, etc.) to
connect the T1 port on your unit to an RJ-45 jack.

• Ethernet cables to connect the LAN ports to LAN switches or to individual

Desktop Installation

1. Remove the 4350 and accessories from the shipping container.

2. Place the 4350 on a flat, dry surface such as a desktop, shelf or tray.

3. Connect the power and network cables to the appropriate ports on the

Caution

To reduce the risk of fire, use only 26 AWG or larger wire (e.g. 24, 22, 20, etc.) to
connect the T1 port on your unit to an RJ-45 jack.

Wall-Mount Installation

1. The 4350 can be wall-mounted using the two mounting brackets on the

IP phones. They can also be used to connect the Ethernet WAN port to a
WAN router, a Cable Modem or a DSL Modem, if T1/E1 port is not being
used to connect to the WAN.

back of the system.

bottom of the appliance. We recommend using two round or pan head
screws.

2 - 2

2. Install two screws 5.9" (150 mm) horizontally apart on a wall or other

vertical surface. The screws should protrude from the wall so that you
can fit the appliance between the head of the screw and the wall. If you
install the screws in drywall, use hollow wall anchors to ensure that the
unit does not pull from the wall due to prolonged strain from the cable
and power connectors.

3. Remove the 4350 and accessories from the shipping container.

4. Mount the 4350 on the wall as shown below.

Do not mount the 4350 on the wall as shown below.

Getting Started

1. Connect the power and network cables to the appropriate ports on the

Warning

Caution

Secure the power supply using a fastener or nearby shelf so that it does not hang
from the power connector.

To reduce the risk of fire, use only 26 AWG or larger wire (e.g. 24, 22, 20, etc.) to
connect the T1 port on your unit to an RJ-45 jack.

Rack-Mount Installation

You can mount the 4350 in a shelf by using the rack-mount kit supplied with
the product.

1. Attach the ear mounts to both sides of 4350 with the screws.

2. Attach the 4350 with the ear mounts to the shelf by screwing the ear

back of the system.

mounts to the shelf with screws.

2 - 3

User Manual V2IU 4350 Converged Network Appliance

Connecting the Power and Cables

The 4350 comes with an AC power cord and power adapter for connecting the
unit to the AC outlet.

Warning

Caution

Always connect the AC power cord to an AC outlet suitable for the power supply
that came with the unit in order to reduce the risk of damage to it.

• Connect one end of the AC power cord to the power adapter and the other one
to the AC outlet.

• Connect plug from the power adapter to the Power Connector on the 4350.
Sometimes a little force is necessary to get the plug properly positioned

Secure the power adapter using a fastener or tie wrap to nearby shelf so that it
does not hang from the power connector.

If you are connecting to the WAN using the T1, then connect the T1 cable to
the T1/E1 port and the other end of the cable to the T1 line. Enable the T1 port
from the Network Configuration Menu. In this case, the Ethernet WAN port
will not be available.

If you are connecting to a WAN router, cable modem or DSL modem, then
connect the Ethernet cable to the Ethernet WAN port on 4350 and the other end
to the WAN device.

Administration of the 4350

2 - 4

The 4350 is configured using a web browser such as Internet Explorer or
Netscape Navigator. The 4350 is shipped with a pre-configured IP address for
its LAN port of 192.168.1.1. To connect to the 4350, do the following:

1. Connect a PC using an IP address of 192.168.1.2 and subnet mask of

255.255.255.0 to LAN port 4 of the 4350.

Getting Started

2. Launch a web browser on the PC and enter the URL string: 192.168.1.1.

Press Return.

3. Enter the username root and the password default to log into the system.

The 4350 main configuration menu appears.

Note

For secure management of your network, be sure to change the default userid and
password as described under Change the Administration Password.

4. Configure the system using the information provided in Chapter 3.

2 - 5

User Manual V2IU 4350 Converged Network Appliance

2 - 6

Configuring the V2IU 4350

The V2IU 4350 is a flexible, easy to use converged network appliance that
provides many critical networking functions for IP based voice, video and
data. It can be installed in several different topologies:

• At the customer premise for IP Centrex and hosted video applications

• At the station side of enterprise IP PBXs

• At the trunk side of enterprise IP PBXs

• At the public/private IP address boundary for enterprise video

applications

Most users will follow the steps provided in the “Configuring The Systems
Settings” section of this manual to initially connect the 4350 into their IP
network. The remainder of the configuration can be different based on the
application, VoIP topology and presence of other networking equipment such
as firewalls or DHCP servers. In general, however, the steps used to configure
the 4350 are:

3

Step Task

1 System configuration
2 VoIP configuration
3 Data networking configuration
4 Firewall configuration
5 Traffic management configuration

Some of the steps are optional depending on your particular application. We
have provided configuration guidelines below for each of the application
types supported by the 4350.

3 - 1

User Manual V2IU 4350 Converged Network Appliance

Application Server

Softswitch

Gateway

Gateway

4300T

4300T

PSTN

PSTN

NMS

EM003

VoIP Operations Center

Enterprise Enterprise

T1

T1/FT1 T1/FT1

4350

4350

Configuration Guide For IP Centrex Applications

A typical 4350 installation for an IP Centrex application requires no external
router or firewall. The 4350 WAN port is connected directly to the T1/E1 line
and the LAN port(s) are connected directly to enterprise devices and/or
Ethernet switches.

VoIP signaling is performed in the service provider network via a softswitch
and the 4350 acts as a proxy for the voice devices installed in the enterprise
LAN. In this configuration a single public IP address is used to proxy for all of
the IP phones and to route to multiple PC’s installed on the LAN.

The 4350 performs the following functions in this application:

• WAN/LAN IP routing.

• Traffic shaping and priority queuing to guarantee high quality voice

traffic. These mechanisms protect voice and data traffic from contending
for the same network resources to guarantee low latency and the highest
call quality possible for VoIP traffic. At the same time they ensure the best
utilization of WAN bandwidth by enabling data traffic to burst up to full

3 - 2

line rate in the absence of voice calls. Precedence is automatically given to
traffic coming from IP phones and other devices using the 4350’s
Application Layer Gateway function.

Configuring the V2IU 4350

• NAT/PAT translation for IP phones and PC’s. This allows a single public
IP address to be used on the WAN link to represent all of the private IP
addresses assigned to the LAN IP phones and PC’s.

• Static NAT entries. This enables the customer to use a WAN public IP
address for data servers (web, mail, ftp, etc.) connected behind the 4350.
These servers can then be configured with private IP addresses for
additional security.

• A “VoIP” aware firewall. A full Layer 7 gateway for voice traffic and a
stateful packet inspection firewall for data traffic.

• Call Admission Control (CAC). CAC uses a deterministic algorithm to
decide when there are insufficient network resources available to
adequately support new calls and then return the equivalent of a “fast
busy” to new call requests.

• DHCP server and TFTP relay. These features are used to simplify and
expedite the IP configuration of phones and PC’s. This also includes VoIP
signaling gateway information (MGCP, SIP, and H.323.

• Call quality monitoring (using MOS, jitter, latency, packet loss and much
more) and test tools.

Configuration Outline

Configure For IP Centrex

Task Subtask

System Configuration configure LAN/WAN interface Yes
set ethernet link rate Optional
enable the DHCP server Optional but recommended

configure SNMP Optional
VoIP Configuration enable the VoIP ALG Yes
configure a VoIP subnet route Optional
Data Networking Configuration dynamic NAT Optional but recommended
static NAT Optional
static IP routing Optional
Firewall Configuration enable the data firewall Yes
configure basic settings Optional
configure advanced settings Optional
Traffic Management

Configuration

enable traffic shaping Yes

Application?

3 - 3

User Manual V2IU 4350 Converged Network Appliance

4350

4350

4350

enable Call Admission Control Optional

Configuration Guide For Station Side IP PBX Applications

Most private enterprise VoIP networks use an IP PBX at the corporate
headquarters location to provide voice switching between headquarters,
branch offices and the PSTN. The 4350 is used in these environments to
securely connect branch office employees to the IP PBX installed in the
corporate headquarters location.

Headquarters

IP PBX

4300T

T1

PSTN

Branch Office Branch Office

4300T

T1/FT1 T1/FT1

4300T

Gateway

EM004

The installation of an 4350 on the station side of an enterprise IP PBX is very
similar to the IP Centrex application above. The branch office is connected to
the corporate network using a private T1/E1 link connected directly to the
WAN port of the 4350. The LAN port(s) of the 4350 are connected directly to
enterprise devices and/or Ethernet switches.

3 - 4

Configuring the V2IU 4350

The IP PBX in the corporate headquarters location performs VoIP signaling
and the 4350 acts as a proxy for the voice devices installed at the branch office.
Please note that in the configuration the 4350 located at the Headquarters
location is acting as a WAN router only. The 4350s installed at the brand offices
perform the following functions in this application:

• WAN/LAN IP routing.

• Traffic shaping and priority queuing to guarantee high quality voice

traffic. These mechanisms protect voice and data traffic from contending
for the same network resources to guarantee low latency and the highest
call quality possible for VoIP traffic. At the same time they ensure the best
utilization of WAN bandwidth by enabling data traffic to burst up to full
line rate in the absence of voice calls. Precedence is automatically given to
traffic coming from IP phones and other devices using the 4350’s
Application Layer Gateway function.

• NAT/PAT translation for IP phones and PC’s. This allows a single IP
address to be used on the WAN link to represent all of the private IP
addresses assigned to the LAN IP phones and PC’s.

• A “VoIP” aware firewall. A full layer 7 gateway for voice traffic and a
stateful packet inspection firewall for data traffic.

• Call Admission Control (CAC). CAC uses a deterministic algorithm to
decide when there are insufficient network resources available to
adequately support new calls and then return the equivalent of a “fast
busy” to new call requests.

• DHCP server and TFTP relay. These features are used to simplify and
expedite the IP configuration of phones and PC’s. This also includes VoIP
signaling gateway information (MGCP, SIP, and H.323).

• Call quality monitoring and test tools.

Configuration Outline

Configure For Station
Side IP PBX

Task Subtask

System Configuration configure LAN/WAN interface Yes
set ethernet link rate Optional
enable the DHCP server Optional but

configure SNMP Optional

Application?

recommended

VoIP Configuration enable the VoIP ALG Yes
configure a VoIP subnet route Optional

3 - 5

User Manual V2IU 4350 Converged Network Appliance

4350

4350

4350

Data Networking Configuration dynamic NAT Optional but

recommended
static NAT Optional
static IP routing Optional
Firewall Configuration enable the data firewall Yes
configure basic settings Optional
configure advanced settings Optional
Traffic Management

enable traffic shaping Yes

Configuration
enable Call Admission Control Optional

Configuration Guide For Trunk Side IP PBX Applications

Companies with existing IP-based WAN links for inter-office voice and data
communications can use the 4350 as a traffic shaper to meet the stringent jitter,
latency and packet loss requirements for toll quality voice. The 4350 is
deployed at the edge of the WAN in both headquarters and branch office
locations, as shown below.

Branch Office

Headquarters

IP PBX

4300T

Frame Relay

Or

IP Network

4300T

T1/E1

Branch Office

T1/E1

4300T

IP PBX

3 - 6

IP PBX

EM005

The 4350 performs WAN/LAN IP routing and traffic management functions
in this application. In particular, it provides prioritization to ensure voice
packets are not delayed or dropped while allowing data traffic to use all
remaining bandwidth.

Configuration Outline

Task Subtask

System Configuration configure LAN/WAN interface Yes
set ethernet link rate Optional
enable the DHCP server Not required

configure SNMP Optional
VoIP Configuration enable the VoIP ALG Not required
configure a VoIP subnet route Not required

Configuring the V2IU 4350

Configure For Trunk Side IP
PBX Application?

Data Networking
Configuration

static NAT Not required
static IP routing Not required
Firewall Configuration enable the data firewall Not required
configure basic settings Not required
configure advanced settings Not required
Traffic Management

Configuration
enable Call Admission

dynamic NAT Not required

enable traffic shaping Yes

Not required

Control

3 - 7

User Manual V2IU 4350 Converged Network Appliance

4350

Configuration Guide For Hosted Video Applications

A typical 4350 installation for hosted video applications is depicted in the
diagram below. In this scenario, the 4350s are used to connect all of the video
endpoints to the Gatekeeper. The video endpoints should be configured to
point to the LAN address of the 4350 as the Gatekeeper and the 4350 will proxy
RAS and call setup messages to the Gatekeeper

Service Provider

H.323

Gatekeeper

SIP Voice

V500

NMS

Hotspot

NAT/Firewall

User

T-1/E-1 NxT-1/E-1

Company A Company B

4300T

IP

Phone

Laptop

Softswitch

Public IP
Network

Aggregation

Gateway MCU

5300-S

Aggregation Router

Router

H.323 Video

Endpoint

IP

Phone

PSTN

ISDN,

PSTN Network

PSTN

5300-E

Gateway

H.323 Video
Endpoint

3 - 8

EM008B

The 4350 is installed at the customer premises and is used as a demarcation
point for the video service by providing the following functions:

• WAN/LAN IP routing.

• Traffic shaping and priority queuing to guarantee high quality video

traffic. These mechanisms protect video and data traffic from contending
for the same network resources to guarantee low latency and the highest
call quality possible for voice and video traffic. At the same time they
ensure the best utilization of WAN bandwidth by enabling data traffic to
burst up to full line rate in the absence of video calls. Precedence is
automatically given to traffic coming from video endpoints and other
devices using the 4350’s Application Layer Gateway function.

• Video NAT/PAT translation for video endpoints and PC’s. This allows a
single IP address to be used on the WAN link to represent all of the private
IP addresses assigned to the LAN video endpoints and PC’s.

• A video aware firewall. A full layer 7 gateway for video traffic and a
stateful packet inspection firewall for data traffic

• Call Admission Control (CAC). CAC uses a deterministic algorithm to
decide when there are insufficient network resources available to
adequately support new video calls and then return the equivalent of a
“fast busy” to new call requests.

Task Subtask

Configuring the V2IU 4350

Configure For Hosted
Video Applications?

System Configuration configure LAN/WAN interface Yes
set ethernet link rate Optional
enable the DHCP server Optional

configure SNMP Optional
VoIP Configuration enable the VoIP ALG Yes
configure a VoIP subnet route Optional
Data Networking Configuration dynamic NAT Optional but recommended
static NAT Optional
static IP routing Optional
Firewall Configuration enable the data firewall Yes
configure basic settings Optional
configure advanced settings Optional
Traffic Management

Configuration
enable Call Admission Control Optional

enable traffic shaping Yes

3 - 9

User Manual V2IU 4350 Converged Network Appliance

NMS

PC PC

PC

IP Phone

IP PhoneIP Phone

5300-E

PC

H.323
Endpoint

5300-S 5300-E

IP

Network

PSTNPSTN

Aggregation Router

Aggregation

Router

4300T

Gateway

H.323

Laptop

IP Phone

IP Phone

Headquarters

Branch Office Company B

T-1/E-1 NxT-1/E-1

H.323

Gatekeeper

PSTN

Gateway

Application

Server

Softswitch

Gateway

EM009A

4350

Configuration Guide For Enterprise Video Applications

A typical 4350 installation for enterprise video applications is depicted in the
diagram below. In this scenario, the 4350s are used to connect all of the video
endpoints to the Gatekeeper. The video endpoints should be configured to
point to the LAN address of the 4350 as the Gatekeeper and the 4350 will proxy
RAS and call setup messages to the Gatekeeper.

The 4350 is installed at the private/public IP address boundary and provides
the following functions:

3 - 10

• WAN/LAN IP routing.

• Traffic shaping and priority queuing to guarantee high quality video

traffic. These mechanisms protect video and data traffic from contending
for the same network resources to guarantee low latency and the highest

call quality possible for voice and video traffic. At the same time they
ensure the best utilization of WAN bandwidth by enabling data traffic to
burst up to full line rate in the absence of video calls. Precedence is
automatically given to traffic coming from video endpoints and other
devices using the 4350’s Application Layer Gateway function.

• Video NAT/PAT translation for video endpoints and PC’s. This allows a
single IP address to be used on the WAN link to represent all of the private
IP addresses assigned to the LAN video endpoints and PC’s.

• A video aware firewall. A full layer 7 gateway for video traffic and a
stateful packet inspection firewall for data traffic

• Call Admission Control (CAC). CAC uses a deterministic algorithm to
decide when there are insufficient network resources available to
adequately support new video calls and then return the equivalent of a
“fast busy” to new call requests.

Configure For Hosted

Task Subtask

System Configuration configure LAN/WAN interface Yes

Video Applications?

Configuring the V2IU 4350

set ethernet link rate Optional
enable the DHCP server Optional

configure SNMP Optional
VoIP Configuration enable the VoIP ALG Yes
configure a VoIP subnet route Optional
Data Networking Configuration dynamic NAT Optional but recommended
static NAT Optional
static IP routing Optional
Firewall Configuration enable the data firewall Yes
configure basic settings Optional
configure advanced settings Optional
Traffic Management

Configuration
enable Call Admission Control Optional

enable traffic shaping Yes

3 - 11

User Manual V2IU 4350 Converged Network Appliance

System Configuration

This section explains how to configure the 4350 to function in your IP network.
You will configure the T1/E1 WAN interface, Ethernet interfaces, network
addresses, DNS settings, default gateway, SNMP settings and change the
administrative password.

1. Physically connect to the 4350 as described in Administration of the 4350

on page 2-4.

A browser-based configuration GUI should appear, as shown here.

2. Select the Network entry in the Configuration Menu.

Configure the LAN Interface

The 4350 provides an integrated 4 port 10/100 Mbps ethernet switch that can
be optionally configured to support 802.1q VLANs. Integrated VLAN support
simplifies the integration of the 4350 with existing VLAN-based networks. The
4350 is able to receive 802.1q-tagged packets from a downstream VLAN switch
and appropriately route and process them per its firewall rules. Packets
received from the WAN are placed in the appropriate VLAN based on IP
address routing.

By default VLANs are not enabled and a single IP address is used for all 4
ethernet ports. The configuration of this address is as follows:

1. Enter the IP Address.

2. Enter the Subnet Mask (e.g. 255.255.255.0).

3 - 12