|
 |
|
What is an SBC
●Session Border Controller
■Session,通讯,会谈……
■Border,边界,分界
■Controller,控制并维持整个session状态
■主要是负责网路上语音的安全(语音防火墙),作为不同网域之间的沟通,服务品质,不同
编码格式转码
●E-SBC,Enterprise SBC
在过去,SBC仅出现在电信运营商,现在企业用户也会使用到SBC
|
|
SBC vs. Voice Gateway
●以功能面
■VoIP Gateway只是做单纯不同界面转换,比如说TDM与IP界面
■Session Border Controllers 提供了语音上的安全,不同网域之间的沟通,服务品质,不同
编码格式转码等等功能
●以架构方式
■装置在NAT之后
■至于公网或是DMZ中
|
|
Uncovering the Key Features of SBCs and How They Protect Your
Network 1
●Stopping Attacks with an SBC
■语音与信令的加密
■企业拓扑的隐藏
■对语音存取的监控
●Identifying the Key Requirements of an SBC
■SIP的正规化,使得不同厂牌的SIP变得标准化,易于沟通
■对于不同语音标码格式的转换,使得VoIP通话无阻碍
■不同NAT环境的穿越处理
■传真和音频(Tone)检测
■高性能,高可扩展性以及灵活性
|
|
Uncovering the Key Features of SBCs and How They Protect Your
Network 2
●SBC的安全机制
■TLS for signaling encryption
■Secure RTP(SRTP) for media encryption
■BuiIt-in VoIP firewall
■Topology hiding
■Prevention of DoS and DDoS attacks
■DNIS,CLID,Call type pre-authentication
■Traffic separation(VLAN interface separation)
■Line rate malformed packet protection
■Access Control Lists(ACLs)
■IPsec VPN tunnel
|
|
Why Do Enterprises Need an SBC
●Market trends
■SIP Trunking
■BYOD
■New service
●Voice of customer
■结费需求
■VoIP后的网络安全需求
■统一通讯UC(IM,Presence,Collaboration..)
■行动办公室Mobile User /行动分机Mobile Extension
|
 |
|
SBC 1000/2000
●是一款专为中小企业和分支机构的(最大同时通话数量192/600)的Media Gateway与
SBC组合解决方案
●设计用于解决企业网络安全与SIP通讯和统一通讯并提供与TDM界面完整的互联性,
提供数位以及类比外线和类比终端连接(包括传真机,类比电话等)
●提供理想的企业级SBC应具备的所有功能特性,包括内建语音编码转换、网络安全
(加密、鉴权、DoS保护等)、弹性的SIP表头调整、智慧通话路由选择、异质平台与
厂商互通以及多种全天候备援方案
●建置成本获得先进的SBC功能
|
 |
|
Benefits
●提供了从传统交换机升级到SIP外线和与PBX和SIP外线互通性,同时也提供了一号多
机和Microsoft Active Directory整合
●提供了与现有TDM交换机既有界面以及终端连接的要求用以保留过去既有传统交换机
以及终端的投资
●透过友善的管理界面与整合第三方网络管理界面,大大降低维运的复杂性与困难以
及额外金钱的投入
●无需额外购买软/硬体,本身已具备完整SBC功能
●先进的语音媒体处理(转码,Transcoding)能力
●提供了企业与微软Skype for Business的整合性(微软Lync认证产品)
|
 |
|
Features
Call Forking
●一通来话可以有8个共振目的终端,例如:公司行动门号、私人行动门号、桌机、市
话号码、Lync client(or UC client)……
|
 |
|
Mobile Extension
●在外人员行动装置即分机,可与内部分机通讯
●拨打电话统一经由SBC至PSTN或是ISP
●可对经由SBC通话录音
|
 |
|
SIP Trunk
●经由SBC连接至SIP电信服务商
●通过网络运作,不单支援语音通讯,同时支援影像通讯
●线路(通道)扩充快速,不须额外界面卡
●结费路由
|
 |
|
Voice Transcoding
●对于不同语音编码的建立以及通话,由SBC完成编码转译
|
 |
|
Security
●TLS for signaling encryption
●Secure RTP(SRTP) for media encryption
●Built-in VoIP firewall
●Topology hiding
●Prevention of DoS and DDoS attacks
●DNIS,CLID,Call type pre-authentication
●Traffic separation(VLAN interface separation)
●Line rate malformed packet protection
●Access Control List(ACLs)
●IPses VPN tunnel
|
|
Video Passthrough
●支援影像
●仅对于相同影像编码的建立以及通话,SBC不支援影像编码转译
|
 |
|
Local Survival(Lync solution)
●Option 1 - The SBA
●Intra Branch Lync-Lync calling
●Inter Branch Lync-Lync calling
●Inbound PSTN dialing
●Outbound PSTN dialing
●Conferencing
●Branch Lync user dual registration
●Localized Signaling
|
 |
|
Local Survival(Lync solution)
●Option 2 - The RBA
●Intra Branch Lync-Lync calling
●Inter Branch Lync-Lync calling
●Inbound PSTN dialing
●Outbound PSTN dialing
●Conferencing
●Desktop Sharing
●Lyne Presence
|
 |
|
Local Survival
●Power Failure Transfer
●E1 to E1
●FXO to FXS
|
 |
|
Management
Ease of Management
●Monitoring
|
 |
|
Ease of Management
●Tasks
|
 |
|
Ease of Management
●Settings
|
 |
|
Ease of Management
●Diagnostics
|
 |
|
Ease of Management
●Diagnostics
|
 |
|
Ease of Management
●System
|
 |
|
Network Management Features
●Sonus WEB GUI
●Real time monitoring & Alarms
●Configuration
●Settings,Iicensing,upgrades
●Backup and restore
●Logging
●SNMP Manager
●Traps
●Call statistics
●Objects details
|
|
Network Management Features
●SCOM PIatform
●SCOM pack available
●Device Discovery (Chassis,Cards,ports,PSU,DSPs...etc.)
●Health monitoring with Object status (Error,Warning,Healthy)
●Sonus Manager(REST API)
●Based on REST
●SBC Discovery and grouping
●Alarm monitoring (health status)
●Config backup and restore
●FW/SW upgrade
●Email Notifications
●Offline GUI for config
●LX syslog and decoding tool
|
|
