SlideShare uma empresa Scribd logo

Avaya Session Border Controller (SBC)

Motty Ben Atia
Motty Ben Atia

Avaya Session Border Controller (SBC)

Tecnologia
1 de 25
Baixar para ler offline
Avaya Session Border Controller for Enterprise (ASBCE) Overview
© 2012 Avaya Inc. All rights reserved. 2 What is a Session Border Controller?  Session = real-time, interactive communication session  Border = IP-IP network borders – SIP trunks to service providers – Remote worker access – Intra- & extra-enterprise  Control – Security & SLA assurance – Regulatory compliance Redundant data centers Contact center, audio/video conferencing, emergency services, etc. To PSTN SIP Tele- worker Nomadic/ mobile user SIP Remote site 1. SIP trunking border 2. Hosted services border 3. Internet border HQ/ campus Remote site CCUC H.323 Regional site Federated partners InternetPrivate network ASM
© 2012 Avaya Inc. All rights reserved. 3 Where Avaya Aura™ SBC fits in the Avaya Aura architecture Unified Communications Contact Center Collaboration Solutions Interaction Solutions Performance Analytics System Manager Session Manager Communication Manager Application Enablement Presence Services Service Provider Network Deskphones Clients Video Endpoints SBC
© 2012 Avaya Inc. All rights reserved. 4 Why use an SBC?  Security – Enforces a customer’s unique security policies – SIP trunk provider’s own SBC (if private SIP trunk service) focuses on the providers security concerns – Complete network topology hiding – Interoperability problems between multivendor solutions will occur  Flexibility – Provides layer of independence from Service Provider – allows enterprise to make changes more quickly vs. negotiating / relying on Service Provider if needs change – Normalization point for signaling and RTP media streams – Allows for multiple SIP trunk provider access points – Support of enterprise-specific call flows that may not be directy supported by SIP trunk provider  Accountability – Per call status – QoS, SLA monitoring – Report on intrusion attempts – Session recording
© 2012 Avaya Inc. All rights reserved. 5 How are SBCs different from firewalls?  Traditional firewalls cannot: – Prevent SIP-specific overload conditions and malicious attacks – Open / close RTP media ports in sync with SIP signaling – Track session state and provide uninterrupted service – Perform interworking or security on encrypted sessions – Scale to handle thousands of real-time sessions – Provide carrier-class availability – Solve multi-vendor SIP interoperability problems  InfoSec best practice = deploy defense-in-depth model with application- level security proxies for email and web applications – This means firewalls alone are not sufficient – Same model applies for IP telephony, UC and CC applications
© 2012 Avaya Inc. All rights reserved. 7 Reliability and Scale  Active/standby redundancy  Scales upto 5000 sessions  Redundant SIP connectivity to service providers and Session Manager / Communication Manager possible Avaya Aura® SBC Key Features Applications  SIP trunking to PSTN providers  SIP trunking to hosted service providers (i.e. conferencing, contact center, etc.)  SIP trunking to federated businesses  Remote worker via Internet Security  Acme Packet’s proven SBC security framework for DoS/DDOS protection  TLS & SRTP encryption Service Provider Interoperability  Flexible controls to solve interop problems  Proven configuration templates  Tested with SPs through DevConnect Evolution  Deployable on Avaya Aura System Platform  Easily add SBC to existing installations  Flexible feature set for new applications SM SP CM SBC
© 2012 Avaya Inc. All rights reserved. 8 Avaya Session Border Controller for Enterprise Deployment Models  SIP Trunking – Enforce security policies of the enterprise while solving demarcation issues  Remote Worker – Mobile workspace security, secure distributed call centers, remote workers, teleworkers – Confidently extend UC to mobile workspaces across any network – Secure VPN’less access  Core Security – Securely add various UC applications and devices (voice, video, IM) across the corporate network  Compliance – Secured Media Replication/Forking for archiving, logging
© 2012 Avaya Inc. All rights reserved. 9 Secure Remote Worker with BYOD Personal PC, Mac or iPad devices Avaya Flare®, Avaya one-X® SIP client app App secured into the organization, not the device One number UC anywhere Avaya SBCEAvaya Aura® Presence Server System Manager Communication Manager Avaya Aura Conferencing Aura Messaging Session Manager Untrusted Network (Internet, Wireless, etc.) VPN-less Remote Worker
© 2012 Avaya Inc. All rights reserved. 10 Remote Worker: VPN vs VPNless Endpoints VPN Endpoint  VPN Headers add additional size to traffic. In aggregate reduces bandwidth.  Encrypts traffic, yet does not validate it. (Encrypting and distributing a virus isn’t helpful)  No ability at VPN head-end to distinguish between voice and data traffic. Ultimately voice quality suffers.  Cumbersome user experience for real-time communication application VPNless Endpoint  TLS/SRTP encrypts the traffic with a smaller bandwidth footprint than VPN  Signaling and media are unencrypted at the SBC and inspected at Layer 7 to validate the traffic before it is allowed through  Numerous policies allow Enterprise control of endpoints.  Consistent user experience for applications
© 2012 Avaya Inc. All rights reserved. 11 SIP Trunking Remote Worker Avaya SBC for Enterprise SIP Trunking Avaya SBC for Enterprise SIP Trunking Avaya SBC for Enterprise CS1000 SIP Trunking Avaya SBC for Enterprise 1 Software Base: Avaya Aura SBC for Enterprise 3 HW Platforms: Dell & HP for Enterprise; Portwell CAD-0208 for IPO 2 Use Cases Avaya SBC for Enterprise SIP Trunking
© 2012 Avaya Inc. All rights reserved. 1212 What’s a DMZ?  A DMZ is used to provide a controlled separation at the edge of the Enterprise network.  Our SBC can sit parallel to the FW or in the DMZ. Acme claims firewalls destroy voice quality and that they are so secure they don’t need it.  The security standard is to use a DMZ for Enterprise application access. Security is about layers of protection. Firewall InternetEnterprise Avaya SBCE DMZ SIP Trunks Firewall Carrier CS1000
© 2012 Avaya Inc. All rights reserved. 1313 Avaya SBCE: SIP Trunking Architecture Use Case: SIP Trunking to Carrier Carrier offering SIP trunks as lower-cost alternative to TDM Heavy driver for Enterprise adoption of SBC Support Aura, IPO and CS1K From a SECURITY Stand Point, it is recommended the SBCE be in the DMZ Carrier SIP trunks to the Avaya Session Border Controller for Enterprise Avaya SBCE is located in a DMZ behind the Enterprise firewall Services: security and demarcation device between the IP-PBX and the Carrier − NAT traversal, − Securely anchors signaling and media, and can − Normalize SIP protocol Firewall InternetEnterprise Avaya SBCE DMZ SIP Trunks Firewall Carrier CS1000
© 2012 Avaya Inc. All rights reserved. 14 Avaya SBCE: Remote Worker Architecture Use Case: Remote Worker Extend UC to SIP users remote to the Enterprise Solution not requiring VPN for UC/CC SIP endpoints From a SECURITY Stand Point, it is recommended the SBCE be in the DMZ Remote Worker are external to the Enterprise firewall Avaya Session Border Controller for Enterprise − Authenticate SIP-based users/clients to the enterprise − Securely proxy registrations and client device provisioning − Securely manage communications without requiring a VPN Firewall InternetEnterprise Avaya SBCE DMZ Firewall Remote Workers
© 2012 Avaya Inc. All rights reserved. 15 Carrier SBC’s Carrier SBC IP PBX Intranet FW Carrier SBC • Historically designed to sit at the SP’s edge to protect the carrier. • Complex to use command-line devices • Provides a distinct separation between networks while providing a means of transporting signaling and media • Perform topology hiding for the SP • Tracking calls (CDR) for billing • Act as a Network Address Translator (NAT) for the SP • Provides admission control to limit calls from customer (and insure SLA) • Protocol Internetworking for H.323 and SIP Enterprise Network SP Network 15
© 2012 Avaya Inc. All rights reserved. 16 Enterprise SBC Internet IP PBX Intranet DMZ Avaya SBCE Internal FW External FW/NAT Mobile Users, Telecommuters SRTP/ RTP Remote Worker Avaya SBCE Encryption • TLS proxy • SRTP proxy Enablement • FW / NAT traversal • Call admission control • Signaling and media firewall Enterprise Network Security • Floods and fuzzing prevention • Spoofing prevention (fingerprint verification) • Media anomaly prevention • Stealth attack prevention • Tollfraud Prevention Anti-spam • Whitelist/Blacklist • Behavior learning SIP Trunking 16
© 2012 Avaya Inc. All rights reserved. 1717 NAT Transversal Enterprise IP PBX Internet or Provider Network FW IP Address 96.54.23.10 SBC External IP Address 192.168.45.4 • At a basic level think of it this way: If the SBC sends an INVITE message to the carrier, can the carrier reply and reach IP address 192.168.45.4? No. • The SBC facilitates NAT Transversal by making sure all signaling messages have a REACHABLE return address. In this example, the INVITE would have a source address of 96.54.23.10. • When a reply is sent it reaches the firewall which forwards to external IP Address.
© 2012 Avaya Inc. All rights reserved. 1818 Avaya Session Border Controller for Enterprise 6.2 - A new but already proven solution ASBCE 6.2 is further enhancing the Sipera E-SBC with…  Substantial interoperability testing and improvements in Avaya UC environments especially for VPN’less remote worker  Testing against all Avaya UC platforms – Avaya Aura® – IP Office – CS 1000  New hardware platform targeted at SMEs  New product structure – Separation of ordering hardware and software – Fully supported in Support Advantage (enterprise) and IPOSS (IP Office)  Fully integrated into Avaya processes and tools – Ordering and Logistics – Services access – Available in ASD and EC (spring 2013)  Migration path for existing Avaya Aura® SBC customers
© 2012 Avaya Inc. All rights reserved. 1919 Call Servers  For SIP Trunking, an accepted architecture is: – Call Server + SBC – Call Server + SM + SBC  A valid call server is – CS1k 7.5 ++ – CM 5.2.1 ++ – IPO 8.x ++  SM must be 6.x Session Manager is NOT required for SIP Trunking
© 2012 Avaya Inc. All rights reserved. 2020 Carriers Tested as of November 10th, 2013. Alestra AT&T AT&T Puerto Rico Belgacom Bell Canada Broad-Connect Broadview BT Global Services BT HIPCOM BT Italia BT Wholesale Cable & Wireless CenturyLink Teliasonera TELUS T-Mobile NL UPC Vamoin1/KPN Verizon Business Virgin Media Vodafone DE Vodafone NL VoicePulse Windstream Worldnet P. Rico XO Colt Etisalat Fastweb SPA Frontier Gamma IntelePeer KPN Level 3 MTSAllStream PAETEC Phonect QSC Sprint Swisscom Tele2 Telefonica del Peru Telenor Find App Notes Here: https://devconnect.avaya.com/public/dyn/d_dyn.jsp?fn=103
© 2012 Avaya Inc. All rights reserved. 2121  Session Border Controller capacities are rated in Simultaneous Sessions – A simultaneous session = a communication session between 2 SIP endpoints – Can think of it as analogous to a DSO in the ‘old world’ – Key for engineering is to understand the numbers of sessions required in the solution  For Secure SIP trunking, look at the number of TDM DSOs required  For Remote Worker, calculate required call volumes ASBCE 6.2 System Capacity ‘Rules of Thumb’ •SIP trunking usually 5 users per ‘SS’ • Must account for higher ratio in small • Remote Worker must consider both On-net and off-net requirements • Remember, in Dell configs, Encryption Services impact capacity
© 2012 Avaya Inc. All rights reserved. 22 Hardware Redundancy Options  SME Offer Portwell CAD-0208 – High Availability is not available  Enterprise Offer (Dell R210-II) – High Availability is an option – Will come with a third server for the EMS – Geo-Redundancy at Layer 2 <150ms – Active- Standby Mode  EMS will be on board for all single server implementations – Management IP must be a separate subnet.
© 2012 Avaya Inc. All rights reserved. 2323  One software product – broadly scalable SIP/UC security  Two licensable feature groups – Standard Services for secure SIP trunking – Advanced Services for Remote Worker, Media replication and Encryption  Hardware platforms (Dell and Portwell) for cost-effective scaling ASBCE 6.2 – Simple ‘1,2,3’ Product Construct Standard Service - Per session license - Secure SIP Trunking Advanced Service - Per session license - Remote Worker, Media repl. , Encryption One software Product Two Licensed Feature Groups Three Hardware Configurations Portwell CAD-0208 EMS Core Core High Availability (HA) Single Availability (SA) Single Availability (SA) EMS + Core EMS + Core 23
© 2012 Avaya Inc. All rights reserved. 24 Avaya SBCE - Solution Highlights - Licensed Feature Groups Standard Services – Secure SIP Trunking  Broadly scalable based on platform  High availability solutions with stateful failover  EMS: well-constructed ‘craft’ interfaces for simplicity of implementation and administration  Advanced UC Security: Toll Fraud, Call Walking, etc.  Deep Packet Inspection (SIP and Media)  DoS/DDoS (flood, resource hang/open transaction, crash/fuzz)  ACL/White/Black listing  SIP Normalization – SIP trunk integration module STIM  Call Admission Control  Quality of Service marking and tracking  DTMF manipulation  NAT  RFC 5853 Compliant Advanced Services  Remote Worker: validate and securely support remote/mobile users for extension of Avaya Aura UC services – VPN-less – Supports both near and far end NAT  Encryption Services – SIP TLS  TCP, UDP – sRTP  RTP  Media replication – Ability to fork media to a recording device – UCID and SIPREC for future release
© 2012 Avaya Inc. All rights reserved. 25 Solution Design – Questions to ask.  SIP Trunking – Number of concurrent sessions required? – What’s at the Core (Aura, IPO, CS1K)? – Who is the service provider? – What other elements are in the Enterprise Core? – Is HA required?  SBCE Hardware – SME offer (Portwell CAD-0208) – 500 Sessions – No HA – Enterprise offer (Dell R210-II XL) – 5000 sessions – HA is available
© 2012 Avaya Inc. All rights reserved. 26 Solution Design – Questions to ask  Remote Worker – Number of remote workers? – What are the remote SIP applications (End Points)? – Is encryption required? – What is at the Core (Aura, CS1K, IPO)?  SBCE Hardware – SME offer (Portwell CAD-0208) – 250 Encrypted Sessions – No HA – Enterprise offer (Dell R210-II XL) – 1000 Encrypted Sessions – HA is available

Recomendados

Why Do I Need an SBC
Why Do I Need an SBCWhy Do I Need an SBC
Why Do I Need an SBCPacketBase, Inc.
 
Avaya Aura
Avaya AuraAvaya Aura
Avaya AuraCommunications Products, Inc.
 
Avaya aura 6.x technical overview
Avaya aura 6.x technical overviewAvaya aura 6.x technical overview
Avaya aura 6.x technical overviewMotty Ben Atia
 
Sip trunking - future of tomorrow communications
Sip trunking - future of tomorrow communicationsSip trunking - future of tomorrow communications
Sip trunking - future of tomorrow communicationsRanjit Patel
 
Avaya Aura System Manager
Avaya Aura System ManagerAvaya Aura System Manager
Avaya Aura System ManagerMotty Ben Atia
 
Avaya call routing_flowchart
Avaya call routing_flowchartAvaya call routing_flowchart
Avaya call routing_flowchartdborsan
 
Avaya Aura Session Manager
Avaya Aura Session ManagerAvaya Aura Session Manager
Avaya Aura Session ManagerMotty Ben Atia
 
Avaya IP Office Overview
Avaya IP Office OverviewAvaya IP Office Overview
Avaya IP Office OverviewMotty Ben Atia
 

Recomendados

Why Do I Need an SBC
Why Do I Need an SBCWhy Do I Need an SBC
Why Do I Need an SBCPacketBase, Inc.
 
Avaya Aura
Avaya AuraAvaya Aura
Avaya AuraCommunications Products, Inc.
 
Avaya aura 6.x technical overview
Avaya aura 6.x technical overviewAvaya aura 6.x technical overview
Avaya aura 6.x technical overviewMotty Ben Atia
 
Sip trunking - future of tomorrow communications
Sip trunking - future of tomorrow communicationsSip trunking - future of tomorrow communications
Sip trunking - future of tomorrow communicationsRanjit Patel
 
Avaya Aura System Manager
Avaya Aura System ManagerAvaya Aura System Manager
Avaya Aura System ManagerMotty Ben Atia
 
Avaya call routing_flowchart
Avaya call routing_flowchartAvaya call routing_flowchart
Avaya call routing_flowchartdborsan
 
Avaya Aura Session Manager
Avaya Aura Session ManagerAvaya Aura Session Manager
Avaya Aura Session ManagerMotty Ben Atia
 
Avaya IP Office Overview
Avaya IP Office OverviewAvaya IP Office Overview
Avaya IP Office OverviewMotty Ben Atia
 
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...AURACA
 
Avaya Aura Contact Center Elite
Avaya Aura Contact Center EliteAvaya Aura Contact Center Elite
Avaya Aura Contact Center EliteMotty Ben Atia
 
Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)Motty Ben Atia
 
Avaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBaseAvaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBasePacketBase, Inc.
 
Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2sacma
 
SIP Trunking
SIP TrunkingSIP Trunking
SIP Trunkingorionnow
 
Customer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTXCustomer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTXssuser5824cf
 
Breeze overview
Breeze overviewBreeze overview
Breeze overviewYang Cheng
 
Introducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified CommunicationsIntroducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified CommunicationsArchana Parameshwari
 
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...ALTANAI BISHT
 
Introduction into SIP protocol
Introduction into SIP protocolIntroduction into SIP protocol
Introduction into SIP protocolMichal Hrncirik
 
Cisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching FamilyCisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching FamilyMobeen Khan
 
Avaya ip office beginners training
Avaya ip office beginners trainingAvaya ip office beginners training
Avaya ip office beginners trainingShashank Kapil
 
UCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCEUCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCENovelVox
 
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)Anwesh Dixit
 
Ccnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architectureCcnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architectureSagarR24
 
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig Ports
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig PortsOverview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig Ports
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig PortsAruba, a Hewlett Packard Enterprise company
 
Best Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiBest Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiAruba, a Hewlett Packard Enterprise company
 
Meraki Overview
Meraki OverviewMeraki Overview
Meraki OverviewCloud Distribution
 
Meraki Solution Overview
Meraki Solution OverviewMeraki Solution Overview
Meraki Solution OverviewClaudiu Sandor
 
Avaya Aura 7.0 - What's New Webinar Slides
Avaya Aura 7.0 - What's New Webinar SlidesAvaya Aura 7.0 - What's New Webinar Slides
Avaya Aura 7.0 - What's New Webinar SlidesArrow Systems Integration
 
Avaya identity engines overview
Avaya identity engines overviewAvaya identity engines overview
Avaya identity engines overviewMotty Ben Atia
 

Mais conteúdo relacionado

Mais procurados

Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...AURACA
 
Avaya Aura Contact Center Elite
Avaya Aura Contact Center EliteAvaya Aura Contact Center Elite
Avaya Aura Contact Center EliteMotty Ben Atia
 
Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)Motty Ben Atia
 
Avaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBaseAvaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBasePacketBase, Inc.
 
Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2sacma
 
SIP Trunking
SIP TrunkingSIP Trunking
SIP Trunkingorionnow
 
Customer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTXCustomer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTXssuser5824cf
 
Breeze overview
Breeze overviewBreeze overview
Breeze overviewYang Cheng
 
Introducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified CommunicationsIntroducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified CommunicationsArchana Parameshwari
 
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...ALTANAI BISHT
 
Introduction into SIP protocol
Introduction into SIP protocolIntroduction into SIP protocol
Introduction into SIP protocolMichal Hrncirik
 
Cisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching FamilyCisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching FamilyMobeen Khan
 
Avaya ip office beginners training
Avaya ip office beginners trainingAvaya ip office beginners training
Avaya ip office beginners trainingShashank Kapil
 
UCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCEUCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCENovelVox
 
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)Anwesh Dixit
 
Ccnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architectureCcnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architectureSagarR24
 
Meraki Solution Overview
Meraki Solution OverviewMeraki Solution Overview
Meraki Solution OverviewClaudiu Sandor
 

Mais procurados (20)

Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
Design of small to large multi site solution, based on 8300, 8800 simplex, 88...
 
Avaya Aura Contact Center Elite
Avaya Aura Contact Center EliteAvaya Aura Contact Center Elite
Avaya Aura Contact Center Elite
 
Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)Avaya Aura Application Enablement Services (AES)
Avaya Aura Application Enablement Services (AES)
 
Avaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBaseAvaya VoIP on Cisco Best Practices by PacketBase
Avaya VoIP on Cisco Best Practices by PacketBase
 
Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2Avaya IP Office Demo V4 2
Avaya IP Office Demo V4 2
 
SIP Trunking
SIP TrunkingSIP Trunking
SIP Trunking
 
Customer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTXCustomer Presentation - Aruba Wi-Fi Overview (1).PPTX
Customer Presentation - Aruba Wi-Fi Overview (1).PPTX
 
Breeze overview
Breeze overviewBreeze overview
Breeze overview
 
Introducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified CommunicationsIntroducing Cisco Voice and Unified Communications
Introducing Cisco Voice and Unified Communications
 
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
Sip Detailed , Call flows , Architecture descriptions , SIP services , sip se...
 
Introduction into SIP protocol
Introduction into SIP protocolIntroduction into SIP protocol
Introduction into SIP protocol
 
Cisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching FamilyCisco Catalyst 9000 Switching Family
Cisco Catalyst 9000 Switching Family
 
Avaya ip office beginners training
Avaya ip office beginners trainingAvaya ip office beginners training
Avaya ip office beginners training
 
UCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCEUCCX vs PCCE vs UCCE
UCCX vs PCCE vs UCCE
 
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)
 
Ccnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architectureCcnp presentation day 4 sd-access vs traditional network architecture
Ccnp presentation day 4 sd-access vs traditional network architecture
 
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig Ports
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig PortsOverview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig Ports
Overview of Major Aruba Switching Features incl. Smart Rate for Multi-Gig Ports
 
Best Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiBest Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-Fi
 
Meraki Overview
Meraki OverviewMeraki Overview
Meraki Overview
 
Meraki Solution Overview
Meraki Solution OverviewMeraki Solution Overview
Meraki Solution Overview
 

Destaque

Avaya identity engines overview
Avaya identity engines overviewAvaya identity engines overview
Avaya identity engines overviewMotty Ben Atia
 
Avaya Networking Solution Overview
Avaya Networking Solution OverviewAvaya Networking Solution Overview
Avaya Networking Solution OverviewMotty Ben Atia
 
Avaya Network Management Overview
Avaya Network Management OverviewAvaya Network Management Overview
Avaya Network Management OverviewMotty Ben Atia
 
Shortest path bridging 802.1 aq
Shortest path bridging 802.1 aqShortest path bridging 802.1 aq
Shortest path bridging 802.1 aqMotty Ben Atia
 
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...Amazon Web Services
 
Office 365 introduction and technical overview
Office 365 introduction and technical overviewOffice 365 introduction and technical overview
Office 365 introduction and technical overviewMotty Ben Atia
 
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities SAP Portal
 
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2thePlatform
 
Secure PIN Management How to Issue and Change PINs Securely over the Web
Secure PIN Management How to Issue and Change PINs Securely over the WebSecure PIN Management How to Issue and Change PINs Securely over the Web
Secure PIN Management How to Issue and Change PINs Securely over the WebSafeNet
 
Energy Strategy Group_Report 2012 efficienza energetica
Energy Strategy Group_Report 2012 efficienza energeticaEnergy Strategy Group_Report 2012 efficienza energetica
Energy Strategy Group_Report 2012 efficienza energeticaEugenio Bacile di Castiglione
 

Destaque (16)

Avaya Aura 7.0 - What's New Webinar Slides
Avaya Aura 7.0 - What's New Webinar SlidesAvaya Aura 7.0 - What's New Webinar Slides
Avaya Aura 7.0 - What's New Webinar Slides
 
Avaya identity engines overview
Avaya identity engines overviewAvaya identity engines overview
Avaya identity engines overview
 
Avaya Networking Solution Overview
Avaya Networking Solution OverviewAvaya Networking Solution Overview
Avaya Networking Solution Overview
 
Avaya Network Management Overview
Avaya Network Management OverviewAvaya Network Management Overview
Avaya Network Management Overview
 
Shortest path bridging 802.1 aq
Shortest path bridging 802.1 aqShortest path bridging 802.1 aq
Shortest path bridging 802.1 aq
 
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...
Best Practices for Data Center Migration Planning - August 2016 Monthly Webin...
 
Office 365 introduction and technical overview
Office 365 introduction and technical overviewOffice 365 introduction and technical overview
Office 365 introduction and technical overview
 
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
 
Credit cards
Credit cardsCredit cards
Credit cards
 
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
 
"15 Business Story Ideas to Jump on Now"
"15 Business Story Ideas to Jump on Now""15 Business Story Ideas to Jump on Now"
"15 Business Story Ideas to Jump on Now"
 
Information från Läkemedelsverket #5 2013
Information från Läkemedelsverket #5 2013Information från Läkemedelsverket #5 2013
Information från Läkemedelsverket #5 2013
 
cathy resume
cathy resumecathy resume
cathy resume
 
Secure PIN Management How to Issue and Change PINs Securely over the Web
Secure PIN Management How to Issue and Change PINs Securely over the WebSecure PIN Management How to Issue and Change PINs Securely over the Web
Secure PIN Management How to Issue and Change PINs Securely over the Web
 
Context Based Authentication
Context Based AuthenticationContext Based Authentication
Context Based Authentication
 
Energy Strategy Group_Report 2012 efficienza energetica
Energy Strategy Group_Report 2012 efficienza energeticaEnergy Strategy Group_Report 2012 efficienza energetica
Energy Strategy Group_Report 2012 efficienza energetica
 

Semelhante a Avaya Session Border Controller (SBC)

Sydney UC - February 2015
Sydney UC - February 2015Sydney UC - February 2015
Sydney UC - February 2015justimorris
 
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...Biznes to Rozmowy
 
Midmarket Solution_Overview Presentation_112514.pptx-1.pptx
Midmarket Solution_Overview Presentation_112514.pptx-1.pptxMidmarket Solution_Overview Presentation_112514.pptx-1.pptx
Midmarket Solution_Overview Presentation_112514.pptx-1.pptxLuisLira56
 
Squire Technologes: Session Border Controller
Squire Technologes: Session Border Controller Squire Technologes: Session Border Controller
Squire Technologes: Session Border Controller Squire Technologies
 
SIP servers on embedded systems: Powering SoHo communications
SIP servers on embedded systems: Powering SoHo communicationsSIP servers on embedded systems: Powering SoHo communications
SIP servers on embedded systems: Powering SoHo communicationsRADVISION Ltd.
 
Avaya Aura 21062009
Avaya Aura 21062009Avaya Aura 21062009
Avaya Aura 21062009shottie
 
Audio codes webinar___ms_uc__2_
Audio codes webinar___ms_uc__2_Audio codes webinar___ms_uc__2_
Audio codes webinar___ms_uc__2_Tran Thanh
 
Acit Mumbai - understanding vpns
Acit Mumbai - understanding vpnsAcit Mumbai - understanding vpns
Acit Mumbai - understanding vpnsSleek International
 
Cisco Security portfolio update
Cisco Security portfolio updateCisco Security portfolio update
Cisco Security portfolio updateAtanas Gergiminov
 
12 Understanding V P Ns
12 Understanding V P Ns12 Understanding V P Ns
12 Understanding V P NsAamirAziz
 
Eyeball Messenger SDK V10.0 Developer Reference Guide
Eyeball Messenger SDK V10.0 Developer Reference GuideEyeball Messenger SDK V10.0 Developer Reference Guide
Eyeball Messenger SDK V10.0 Developer Reference GuideEyeball Networks
 
Build your SME revenue with Avaya Networking!
Build your SME revenue with Avaya Networking!Build your SME revenue with Avaya Networking!
Build your SME revenue with Avaya Networking!WESTCON EMEA
 

Semelhante a Avaya Session Border Controller (SBC) (20)

Sydney UC - February 2015
Sydney UC - February 2015Sydney UC - February 2015
Sydney UC - February 2015
 
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...
ACME- Session Border Controllers – podstawa udanych i efektywnych implementac...
 
2012 ah apj wi fi design for voice & video
2012 ah apj wi fi design for voice & video2012 ah apj wi fi design for voice & video
2012 ah apj wi fi design for voice & video
 
Avaya anixter event
Avaya anixter eventAvaya anixter event
Avaya anixter event
 
Midmarket Solution_Overview Presentation_112514.pptx-1.pptx
Midmarket Solution_Overview Presentation_112514.pptx-1.pptxMidmarket Solution_Overview Presentation_112514.pptx-1.pptx
Midmarket Solution_Overview Presentation_112514.pptx-1.pptx
 
Squire Technologes: Session Border Controller
Squire Technologes: Session Border Controller Squire Technologes: Session Border Controller
Squire Technologes: Session Border Controller
 
SIP servers on embedded systems: Powering SoHo communications
SIP servers on embedded systems: Powering SoHo communicationsSIP servers on embedded systems: Powering SoHo communications
SIP servers on embedded systems: Powering SoHo communications
 
Avaya Aura 21062009
Avaya Aura 21062009Avaya Aura 21062009
Avaya Aura 21062009
 
Audio codes webinar___ms_uc__2_
Audio codes webinar___ms_uc__2_Audio codes webinar___ms_uc__2_
Audio codes webinar___ms_uc__2_
 
Acit Mumbai - understanding vpns
Acit Mumbai - understanding vpnsAcit Mumbai - understanding vpns
Acit Mumbai - understanding vpns
 
Sip1
Sip1Sip1
Sip1
 
Cisco Security portfolio update
Cisco Security portfolio updateCisco Security portfolio update
Cisco Security portfolio update
 
12 Understanding V P Ns
12 Understanding V P Ns12 Understanding V P Ns
12 Understanding V P Ns
 
Eyeball Messenger SDK V10.0 Developer Reference Guide
Eyeball Messenger SDK V10.0 Developer Reference GuideEyeball Messenger SDK V10.0 Developer Reference Guide
Eyeball Messenger SDK V10.0 Developer Reference Guide
 
Air heads rio 2010 aruba pef overview
Air heads rio 2010 aruba pef overviewAir heads rio 2010 aruba pef overview
Air heads rio 2010 aruba pef overview
 
Breakout - Airheads Macau 2013 - Cloud WiFi
Breakout - Airheads Macau 2013 - Cloud WiFiBreakout - Airheads Macau 2013 - Cloud WiFi
Breakout - Airheads Macau 2013 - Cloud WiFi
 
Vo ip sip
Vo ip sipVo ip sip
Vo ip sip
 
Build your SME revenue with Avaya Networking!
Build your SME revenue with Avaya Networking!Build your SME revenue with Avaya Networking!
Build your SME revenue with Avaya Networking!
 
04b-radcliffe
04b-radcliffe04b-radcliffe
04b-radcliffe
 
Jvvnl 071108
Jvvnl 071108Jvvnl 071108
Jvvnl 071108
 

Mais de Motty Ben Atia

Microsoft azure platforms
Microsoft azure platformsMicrosoft azure platforms
Microsoft azure platformsMotty Ben Atia
 
CA ARCserve Solution Overview
CA ARCserve Solution OverviewCA ARCserve Solution Overview
CA ARCserve Solution OverviewMotty Ben Atia
 
Sonicwall wireless & sra
Sonicwall wireless & sraSonicwall wireless & sra
Sonicwall wireless & sraMotty Ben Atia
 
Dell sonicwall connected security
Dell sonicwall connected securityDell sonicwall connected security
Dell sonicwall connected securityMotty Ben Atia
 
CA ARCserve Replication
CA ARCserve ReplicationCA ARCserve Replication
CA ARCserve ReplicationMotty Ben Atia
 
CA ARCserve High Availability
CA ARCserve High Availability CA ARCserve High Availability
CA ARCserve High Availability Motty Ben Atia
 
CA ARCserve d2d on demand overview updated
CA ARCserve d2d on demand overview updatedCA ARCserve d2d on demand overview updated
CA ARCserve d2d on demand overview updatedMotty Ben Atia
 
Adobe Acrobat XI Overview
Adobe Acrobat XI OverviewAdobe Acrobat XI Overview
Adobe Acrobat XI OverviewMotty Ben Atia
 
Adobe Creative Cloud Customer & Reseller Workflow
Adobe Creative Cloud Customer & Reseller WorkflowAdobe Creative Cloud Customer & Reseller Workflow
Adobe Creative Cloud Customer & Reseller WorkflowMotty Ben Atia
 
Adobe Creative Cloud For Teams
Adobe Creative Cloud For TeamsAdobe Creative Cloud For Teams
Adobe Creative Cloud For TeamsMotty Ben Atia
 
Scopia Management Solutions
Scopia Management SolutionsScopia Management Solutions
Scopia Management SolutionsMotty Ben Atia
 
Scopia Infrastructure Guide
Scopia Infrastructure GuideScopia Infrastructure Guide
Scopia Infrastructure GuideMotty Ben Atia
 
Avaya Scopia Endpoint & Mobility
Avaya Scopia Endpoint & MobilityAvaya Scopia Endpoint & Mobility
Avaya Scopia Endpoint & MobilityMotty Ben Atia
 
Avaya Scopia Series Overview
Avaya Scopia Series OverviewAvaya Scopia Series Overview
Avaya Scopia Series OverviewMotty Ben Atia
 
The authenticated network architecture
The authenticated network architectureThe authenticated network architecture
The authenticated network architectureMotty Ben Atia
 
Network Virtualization using Shortest Path Bridging
Network Virtualization using Shortest Path Bridging Network Virtualization using Shortest Path Bridging
Network Virtualization using Shortest Path Bridging Motty Ben Atia
 

Mais de Motty Ben Atia (20)

Microsoft azure platforms
Microsoft azure platformsMicrosoft azure platforms
Microsoft azure platforms
 
Windows Azure for IT
Windows Azure for ITWindows Azure for IT
Windows Azure for IT
 
CA ARCserve Solution Overview
CA ARCserve Solution OverviewCA ARCserve Solution Overview
CA ARCserve Solution Overview
 
Sonicwall wireless & sra
Sonicwall wireless & sraSonicwall wireless & sra
Sonicwall wireless & sra
 
Ngfw overview
Ngfw overviewNgfw overview
Ngfw overview
 
Dell sonicwall connected security
Dell sonicwall connected securityDell sonicwall connected security
Dell sonicwall connected security
 
CA ARCserve D2D
CA ARCserve D2DCA ARCserve D2D
CA ARCserve D2D
 
CA ARCserve Replication
CA ARCserve ReplicationCA ARCserve Replication
CA ARCserve Replication
 
CA ARCserve High Availability
CA ARCserve High Availability CA ARCserve High Availability
CA ARCserve High Availability
 
CA ARCserve Backup
CA ARCserve BackupCA ARCserve Backup
CA ARCserve Backup
 
CA ARCserve d2d on demand overview updated
CA ARCserve d2d on demand overview updatedCA ARCserve d2d on demand overview updated
CA ARCserve d2d on demand overview updated
 
Adobe Acrobat XI Overview
Adobe Acrobat XI OverviewAdobe Acrobat XI Overview
Adobe Acrobat XI Overview
 
Adobe Creative Cloud Customer & Reseller Workflow
Adobe Creative Cloud Customer & Reseller WorkflowAdobe Creative Cloud Customer & Reseller Workflow
Adobe Creative Cloud Customer & Reseller Workflow
 
Adobe Creative Cloud For Teams
Adobe Creative Cloud For TeamsAdobe Creative Cloud For Teams
Adobe Creative Cloud For Teams
 
Scopia Management Solutions
Scopia Management SolutionsScopia Management Solutions
Scopia Management Solutions
 
Scopia Infrastructure Guide
Scopia Infrastructure GuideScopia Infrastructure Guide
Scopia Infrastructure Guide
 
Avaya Scopia Endpoint & Mobility
Avaya Scopia Endpoint & MobilityAvaya Scopia Endpoint & Mobility
Avaya Scopia Endpoint & Mobility
 
Avaya Scopia Series Overview
Avaya Scopia Series OverviewAvaya Scopia Series Overview
Avaya Scopia Series Overview
 
The authenticated network architecture
The authenticated network architectureThe authenticated network architecture
The authenticated network architecture
 
Network Virtualization using Shortest Path Bridging
Network Virtualization using Shortest Path Bridging Network Virtualization using Shortest Path Bridging
Network Virtualization using Shortest Path Bridging
 

Último

SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 

Último (20)

SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 

Avaya Session Border Controller (SBC)

  • 1. Avaya Session Border Controller for Enterprise (ASBCE) Overview
  • 2. © 2012 Avaya Inc. All rights reserved. 2 What is a Session Border Controller?  Session = real-time, interactive communication session  Border = IP-IP network borders – SIP trunks to service providers – Remote worker access – Intra- & extra-enterprise  Control – Security & SLA assurance – Regulatory compliance Redundant data centers Contact center, audio/video conferencing, emergency services, etc. To PSTN SIP Tele- worker Nomadic/ mobile user SIP Remote site 1. SIP trunking border 2. Hosted services border 3. Internet border HQ/ campus Remote site CCUC H.323 Regional site Federated partners InternetPrivate network ASM
  • 3. © 2012 Avaya Inc. All rights reserved. 3 Where Avaya Aura™ SBC fits in the Avaya Aura architecture Unified Communications Contact Center Collaboration Solutions Interaction Solutions Performance Analytics System Manager Session Manager Communication Manager Application Enablement Presence Services Service Provider Network Deskphones Clients Video Endpoints SBC
  • 4. © 2012 Avaya Inc. All rights reserved. 4 Why use an SBC?  Security – Enforces a customer’s unique security policies – SIP trunk provider’s own SBC (if private SIP trunk service) focuses on the providers security concerns – Complete network topology hiding – Interoperability problems between multivendor solutions will occur  Flexibility – Provides layer of independence from Service Provider – allows enterprise to make changes more quickly vs. negotiating / relying on Service Provider if needs change – Normalization point for signaling and RTP media streams – Allows for multiple SIP trunk provider access points – Support of enterprise-specific call flows that may not be directy supported by SIP trunk provider  Accountability – Per call status – QoS, SLA monitoring – Report on intrusion attempts – Session recording
  • 5. © 2012 Avaya Inc. All rights reserved. 5 How are SBCs different from firewalls?  Traditional firewalls cannot: – Prevent SIP-specific overload conditions and malicious attacks – Open / close RTP media ports in sync with SIP signaling – Track session state and provide uninterrupted service – Perform interworking or security on encrypted sessions – Scale to handle thousands of real-time sessions – Provide carrier-class availability – Solve multi-vendor SIP interoperability problems  InfoSec best practice = deploy defense-in-depth model with application- level security proxies for email and web applications – This means firewalls alone are not sufficient – Same model applies for IP telephony, UC and CC applications
  • 6. © 2012 Avaya Inc. All rights reserved. 7 Reliability and Scale  Active/standby redundancy  Scales upto 5000 sessions  Redundant SIP connectivity to service providers and Session Manager / Communication Manager possible Avaya Aura® SBC Key Features Applications  SIP trunking to PSTN providers  SIP trunking to hosted service providers (i.e. conferencing, contact center, etc.)  SIP trunking to federated businesses  Remote worker via Internet Security  Acme Packet’s proven SBC security framework for DoS/DDOS protection  TLS & SRTP encryption Service Provider Interoperability  Flexible controls to solve interop problems  Proven configuration templates  Tested with SPs through DevConnect Evolution  Deployable on Avaya Aura System Platform  Easily add SBC to existing installations  Flexible feature set for new applications SM SP CM SBC
  • 7. © 2012 Avaya Inc. All rights reserved. 8 Avaya Session Border Controller for Enterprise Deployment Models  SIP Trunking – Enforce security policies of the enterprise while solving demarcation issues  Remote Worker – Mobile workspace security, secure distributed call centers, remote workers, teleworkers – Confidently extend UC to mobile workspaces across any network – Secure VPN’less access  Core Security – Securely add various UC applications and devices (voice, video, IM) across the corporate network  Compliance – Secured Media Replication/Forking for archiving, logging
  • 8. © 2012 Avaya Inc. All rights reserved. 9 Secure Remote Worker with BYOD Personal PC, Mac or iPad devices Avaya Flare®, Avaya one-X® SIP client app App secured into the organization, not the device One number UC anywhere Avaya SBCEAvaya Aura® Presence Server System Manager Communication Manager Avaya Aura Conferencing Aura Messaging Session Manager Untrusted Network (Internet, Wireless, etc.) VPN-less Remote Worker
  • 9. © 2012 Avaya Inc. All rights reserved. 10 Remote Worker: VPN vs VPNless Endpoints VPN Endpoint  VPN Headers add additional size to traffic. In aggregate reduces bandwidth.  Encrypts traffic, yet does not validate it. (Encrypting and distributing a virus isn’t helpful)  No ability at VPN head-end to distinguish between voice and data traffic. Ultimately voice quality suffers.  Cumbersome user experience for real-time communication application VPNless Endpoint  TLS/SRTP encrypts the traffic with a smaller bandwidth footprint than VPN  Signaling and media are unencrypted at the SBC and inspected at Layer 7 to validate the traffic before it is allowed through  Numerous policies allow Enterprise control of endpoints.  Consistent user experience for applications
  • 10. © 2012 Avaya Inc. All rights reserved. 11 SIP Trunking Remote Worker Avaya SBC for Enterprise SIP Trunking Avaya SBC for Enterprise SIP Trunking Avaya SBC for Enterprise CS1000 SIP Trunking Avaya SBC for Enterprise 1 Software Base: Avaya Aura SBC for Enterprise 3 HW Platforms: Dell & HP for Enterprise; Portwell CAD-0208 for IPO 2 Use Cases Avaya SBC for Enterprise SIP Trunking
  • 11. © 2012 Avaya Inc. All rights reserved. 1212 What’s a DMZ?  A DMZ is used to provide a controlled separation at the edge of the Enterprise network.  Our SBC can sit parallel to the FW or in the DMZ. Acme claims firewalls destroy voice quality and that they are so secure they don’t need it.  The security standard is to use a DMZ for Enterprise application access. Security is about layers of protection. Firewall InternetEnterprise Avaya SBCE DMZ SIP Trunks Firewall Carrier CS1000
  • 12. © 2012 Avaya Inc. All rights reserved. 1313 Avaya SBCE: SIP Trunking Architecture Use Case: SIP Trunking to Carrier Carrier offering SIP trunks as lower-cost alternative to TDM Heavy driver for Enterprise adoption of SBC Support Aura, IPO and CS1K From a SECURITY Stand Point, it is recommended the SBCE be in the DMZ Carrier SIP trunks to the Avaya Session Border Controller for Enterprise Avaya SBCE is located in a DMZ behind the Enterprise firewall Services: security and demarcation device between the IP-PBX and the Carrier − NAT traversal, − Securely anchors signaling and media, and can − Normalize SIP protocol Firewall InternetEnterprise Avaya SBCE DMZ SIP Trunks Firewall Carrier CS1000
  • 13. © 2012 Avaya Inc. All rights reserved. 14 Avaya SBCE: Remote Worker Architecture Use Case: Remote Worker Extend UC to SIP users remote to the Enterprise Solution not requiring VPN for UC/CC SIP endpoints From a SECURITY Stand Point, it is recommended the SBCE be in the DMZ Remote Worker are external to the Enterprise firewall Avaya Session Border Controller for Enterprise − Authenticate SIP-based users/clients to the enterprise − Securely proxy registrations and client device provisioning − Securely manage communications without requiring a VPN Firewall InternetEnterprise Avaya SBCE DMZ Firewall Remote Workers
  • 14. © 2012 Avaya Inc. All rights reserved. 15 Carrier SBC’s Carrier SBC IP PBX Intranet FW Carrier SBC • Historically designed to sit at the SP’s edge to protect the carrier. • Complex to use command-line devices • Provides a distinct separation between networks while providing a means of transporting signaling and media • Perform topology hiding for the SP • Tracking calls (CDR) for billing • Act as a Network Address Translator (NAT) for the SP • Provides admission control to limit calls from customer (and insure SLA) • Protocol Internetworking for H.323 and SIP Enterprise Network SP Network 15
  • 15. © 2012 Avaya Inc. All rights reserved. 16 Enterprise SBC Internet IP PBX Intranet DMZ Avaya SBCE Internal FW External FW/NAT Mobile Users, Telecommuters SRTP/ RTP Remote Worker Avaya SBCE Encryption • TLS proxy • SRTP proxy Enablement • FW / NAT traversal • Call admission control • Signaling and media firewall Enterprise Network Security • Floods and fuzzing prevention • Spoofing prevention (fingerprint verification) • Media anomaly prevention • Stealth attack prevention • Tollfraud Prevention Anti-spam • Whitelist/Blacklist • Behavior learning SIP Trunking 16
  • 16. © 2012 Avaya Inc. All rights reserved. 1717 NAT Transversal Enterprise IP PBX Internet or Provider Network FW IP Address 96.54.23.10 SBC External IP Address 192.168.45.4 • At a basic level think of it this way: If the SBC sends an INVITE message to the carrier, can the carrier reply and reach IP address 192.168.45.4? No. • The SBC facilitates NAT Transversal by making sure all signaling messages have a REACHABLE return address. In this example, the INVITE would have a source address of 96.54.23.10. • When a reply is sent it reaches the firewall which forwards to external IP Address.
  • 17. © 2012 Avaya Inc. All rights reserved. 1818 Avaya Session Border Controller for Enterprise 6.2 - A new but already proven solution ASBCE 6.2 is further enhancing the Sipera E-SBC with…  Substantial interoperability testing and improvements in Avaya UC environments especially for VPN’less remote worker  Testing against all Avaya UC platforms – Avaya Aura® – IP Office – CS 1000  New hardware platform targeted at SMEs  New product structure – Separation of ordering hardware and software – Fully supported in Support Advantage (enterprise) and IPOSS (IP Office)  Fully integrated into Avaya processes and tools – Ordering and Logistics – Services access – Available in ASD and EC (spring 2013)  Migration path for existing Avaya Aura® SBC customers
  • 18. © 2012 Avaya Inc. All rights reserved. 1919 Call Servers  For SIP Trunking, an accepted architecture is: – Call Server + SBC – Call Server + SM + SBC  A valid call server is – CS1k 7.5 ++ – CM 5.2.1 ++ – IPO 8.x ++  SM must be 6.x Session Manager is NOT required for SIP Trunking
  • 19. © 2012 Avaya Inc. All rights reserved. 2020 Carriers Tested as of November 10th, 2013. Alestra AT&T AT&T Puerto Rico Belgacom Bell Canada Broad-Connect Broadview BT Global Services BT HIPCOM BT Italia BT Wholesale Cable & Wireless CenturyLink Teliasonera TELUS T-Mobile NL UPC Vamoin1/KPN Verizon Business Virgin Media Vodafone DE Vodafone NL VoicePulse Windstream Worldnet P. Rico XO Colt Etisalat Fastweb SPA Frontier Gamma IntelePeer KPN Level 3 MTSAllStream PAETEC Phonect QSC Sprint Swisscom Tele2 Telefonica del Peru Telenor Find App Notes Here: https://devconnect.avaya.com/public/dyn/d_dyn.jsp?fn=103
  • 20. © 2012 Avaya Inc. All rights reserved. 2121  Session Border Controller capacities are rated in Simultaneous Sessions – A simultaneous session = a communication session between 2 SIP endpoints – Can think of it as analogous to a DSO in the ‘old world’ – Key for engineering is to understand the numbers of sessions required in the solution  For Secure SIP trunking, look at the number of TDM DSOs required  For Remote Worker, calculate required call volumes ASBCE 6.2 System Capacity ‘Rules of Thumb’ •SIP trunking usually 5 users per ‘SS’ • Must account for higher ratio in small • Remote Worker must consider both On-net and off-net requirements • Remember, in Dell configs, Encryption Services impact capacity
  • 21. © 2012 Avaya Inc. All rights reserved. 22 Hardware Redundancy Options  SME Offer Portwell CAD-0208 – High Availability is not available  Enterprise Offer (Dell R210-II) – High Availability is an option – Will come with a third server for the EMS – Geo-Redundancy at Layer 2 <150ms – Active- Standby Mode  EMS will be on board for all single server implementations – Management IP must be a separate subnet.
  • 22. © 2012 Avaya Inc. All rights reserved. 2323  One software product – broadly scalable SIP/UC security  Two licensable feature groups – Standard Services for secure SIP trunking – Advanced Services for Remote Worker, Media replication and Encryption  Hardware platforms (Dell and Portwell) for cost-effective scaling ASBCE 6.2 – Simple ‘1,2,3’ Product Construct Standard Service - Per session license - Secure SIP Trunking Advanced Service - Per session license - Remote Worker, Media repl. , Encryption One software Product Two Licensed Feature Groups Three Hardware Configurations Portwell CAD-0208 EMS Core Core High Availability (HA) Single Availability (SA) Single Availability (SA) EMS + Core EMS + Core 23
  • 23. © 2012 Avaya Inc. All rights reserved. 24 Avaya SBCE - Solution Highlights - Licensed Feature Groups Standard Services – Secure SIP Trunking  Broadly scalable based on platform  High availability solutions with stateful failover  EMS: well-constructed ‘craft’ interfaces for simplicity of implementation and administration  Advanced UC Security: Toll Fraud, Call Walking, etc.  Deep Packet Inspection (SIP and Media)  DoS/DDoS (flood, resource hang/open transaction, crash/fuzz)  ACL/White/Black listing  SIP Normalization – SIP trunk integration module STIM  Call Admission Control  Quality of Service marking and tracking  DTMF manipulation  NAT  RFC 5853 Compliant Advanced Services  Remote Worker: validate and securely support remote/mobile users for extension of Avaya Aura UC services – VPN-less – Supports both near and far end NAT  Encryption Services – SIP TLS  TCP, UDP – sRTP  RTP  Media replication – Ability to fork media to a recording device – UCID and SIPREC for future release
  • 24. © 2012 Avaya Inc. All rights reserved. 25 Solution Design – Questions to ask.  SIP Trunking – Number of concurrent sessions required? – What’s at the Core (Aura, IPO, CS1K)? – Who is the service provider? – What other elements are in the Enterprise Core? – Is HA required?  SBCE Hardware – SME offer (Portwell CAD-0208) – 500 Sessions – No HA – Enterprise offer (Dell R210-II XL) – 5000 sessions – HA is available
  • 25. © 2012 Avaya Inc. All rights reserved. 26 Solution Design – Questions to ask  Remote Worker – Number of remote workers? – What are the remote SIP applications (End Points)? – Is encryption required? – What is at the Core (Aura, CS1K, IPO)?  SBCE Hardware – SME offer (Portwell CAD-0208) – 250 Encrypted Sessions – No HA – Enterprise offer (Dell R210-II XL) – 1000 Encrypted Sessions – HA is available