EasyManua.ls Logo

AudioCodes Mediant 2000 System User Manual

AudioCodes Mediant 2000 System
404 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #203 background imageLoading...
Page #203 background image
Version 5.2 203 September 2007
SIP User's Manual 5. Web-based Management
3. In the 'Subject Name' field, enter the DNS name, and then click Generate CSR. A
textual certificate signing request, that contains the SSL device identifier, is displayed.
4. Copy this text and send it to your security provider; the security provider (also known
as Certification Authority or CA) signs this request and send you a server certificate for
the device.
5. Save the certificate in a file (e.g., cert.txt). Ensure the file is a plain-text file with the
‘BEGIN CERTIFICATE’ header. Below is an example of a Base64-Encoded X.509
Certificate.
-----BEGIN CERTIFICATE-----
MIIDkzCCAnugAwIBAgIEAgAAADANBgkqhkiG9w0BAQQFADA/MQswCQYDVQQGEwJGUj
ETMBEGA1UEChMKQ2VydGlwb3N0ZTEbMBkGA1UEAxMSQ2VydGlwb3N0ZSBTZXJ2ZXVy
MB4XDTk4MDYyNDA4MDAwMFoXDTE4MDYyNDA4MDAwMFowPzELMAkGA1UEBhMCRlIxEz
ARBgNVBAoTCkNlcnRpcG9zdGUxGzAZBgNVBAMTEkNlcnRpcG9zdGUgU2VydmV1cjCC
ASEwDQYJKoZIhvcNAQEBBQADggEOADCCAQkCggEAPqd4MziR4spWldGRx8bQrhZkon
WnNm`+Yhb7+4Q67ecf1janH7GcN/SXsfx7jJpreWULf7v7Cvpr4R7qIJcmdHIntmf7
JPM5n6cDBv17uSW63er7NkVnMFHwK1QaGFLMybFkzaeGrvFm4k3lRefiXDmuOe+FhJ
gHYezYHf44LvPRPwhSrzi9+Aq3o8pWDguJuZDIUP1F1jMa+LPwvREXfFcUW+w==
-----END CERTIFICATE-----
6. Before continuing, set the parameter HTTPSOnly to 0 to ensure you have a method of
accessing the device in case the new certificate doesn’t work. Restore the previous
setting after testing the configuration.
7. In the 'Certificates Files' pane, click the Browse button corresponding to 'Send Server
Certificate...', navigate to the cert.txt file, and then click Send File.
8. When the operation is completed, save the configuration (refer to 'Saving
Configuration' on page 256) and restart the gateway; the Embedded Web Server uses
the provided certificate.
Notes:
The certificate replacement process can be repeated when necessary
(e.g., the new certificate expires).
It is possible to use the IP address of the gateway (e.g., 10.3.3.1) instead
of a qualified DNS name in the Subject Name. This is not recommended
since the IP address is subject to changes and may not uniquely identify
the device.
The server certificate can also be loaded via ini file using the parameter
HTTPSCertFileName.
5.9.4.2 Client Certificates
By default, Web servers using SSL provide one-way authentication. The client is certain
that the information provided by the Web server is authentic. When an organizational PKI is
used, two-way authentication may be desired: both client and server should be
authenticated using X.509 certificates. This is achieved by installing a client certificate on
the managing PC, and loading the same certificate (in base64-encoded X.509 format) to
the gateway Trusted Root Certificate Store. The Trusted Root Certificate file should contain
both the certificate of the authorized user and the certificate of the CA.

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the AudioCodes Mediant 2000 System and is the answer not in the manual?

AudioCodes Mediant 2000 System Specifications

General IconGeneral
Max Concurrent Sessions2000
ProtocolsSIP, H.323, MGCP
Product TypeVoIP Gateway
Network Interfaces2 x 10/100/1000Base-T Ethernet
Power SupplyAC or DC power supply options
TDM InterfacesE1/T1
VoIP ChannelsUp to 2000
ManagementWeb-based, SNMP, CLI
Voice CodecsG.711, G.723.1, G.726, G.729
Operating Temperature0 to 40°C
Security FeaturesTLS, SRTP
Dimensions (HxWxD)44 x 438 x 350 mm (1.73 x 17.24 x 13.78 in)
RedundancyPower supply redundancy, network redundancy, 1+1 gateway redundancy

Summary

Overview

SIP Overview

Explains Session Initialization Protocol (SIP) and its role in creating, modifying, and terminating sessions.

Mediant 2000 Overview

Describes the Mediant 2000 as a SIP-based Voice-over-IP media gateway.

TP-1610 Overview

Details the TP-1610 as a SIP-compliant VoIP "gateway-on-a-blade" using cPCI.

TP-260 Overview

Introduces the TP-260 as a SIP-compliant VoIP media processing server in a PCI form-factor.

Physical Description

Mediant 2000 Physical Description

Details the hardware components of the Mediant 2000 chassis, blades, and modules.

TP-1610 Physical Description

Describes the TP-1610 cPCI blade, including its components and Rear Transition Module.

TP-260 Physical Description

Details the TP-260 PCI blade, its components, and connectors.

Installation

Installing the Mediant 2000

Provides chronological steps for installing the Mediant 2000, including unpacking and cabling.

Installing the TP-1610

Outlines the installation procedure for the TP-1610 blade, including unpacking and cabling.

Installing the TP-260

Details the installation process for the TP-260 blade in a PC, including unpacking and cabling.

Getting Started

Configuration Concepts

Explains gateway deployment options and configuration methods like Web, ini file, and SNMP.

Startup Process

Describes the gateway's startup sequence, including network parameter acquisition and file loading.

Assigning an IP Address

Details methods for assigning an IP address using HTTP, BootP, CLI, or DHCP.

Configuring Basic Parameters

Guides through configuring basic SIP parameters via the 'Quick Setup' screen.

Web-based Management

Computer Requirements

Lists the necessary computer and web browser requirements for accessing the Embedded Web Server.

Protection and Security Mechanisms

Covers security features like user accounts, read-only mode, and access list limiting.

Accessing the Embedded Web Server

Provides steps to access the gateway's Embedded Web Server using a web browser.

Getting Acquainted with the Web Interface

Explains the layout and components of the Embedded Web Server interface.

Protocol Management

Manages and configures the gateway's SIP parameters and tables.

Configuring the Advanced Parameters

Configures advanced control protocol parameters like supplementary services.

Configuring the Number Manipulation Tables

Sets up tables to modify destination and source numbers for call routing.

Configuring the Routing Tables

Configures the gateway's IP-to-Tel and Tel-to-IP routing tables.

Configuring the Profile Definitions

Configures profiles for adapting gateway behavior to different equipment and protocols.

Configuring the Trunk Group Table

Assigns trunk groups, profiles, and phone numbers to gateway channels for routing.

Configuring the Trunk Group Settings

Determines how new calls are assigned to channels within trunk groups.

Configuring the Digital Gateway Parameters

Configures miscellaneous digital parameters for the gateway.

Security Settings

Manages security configurations including user accounts, firewalls, and certificates.

Status & Diagnostics

Monitors gateway status, diagnostics, and system information.

Software Update

Guides users through upgrading gateway software, loading firmware and configuration files.

Maintenance

Provides options for gateway maintenance like locking, saving, and resetting.

ini File Configuration

Secured ini File

Explains the use of encoded ini files to protect sensitive gateway configuration information.

Modifying an ini File

Guides on editing ini files for gateway configuration using a text editor.

The ini File Parameter Reference

Lists and describes various ini file parameters for networking, system, and security.

Telephony Capabilities

Configuring the DTMF Transport Types

Explains how to control DTMF digit transport over the IP network using various modes.

Fax and Modem Capabilities

Details fax and modem operations, including transport modes and specific fax relay features.

Configuring Alternative Routing (Based on Connectivity and QoS)

Explains how the gateway checks availability and QoS for reliable Tel-to-IP call routing.

Call Detail Record

Describes the Call Detail Record (CDR) for vital statistic information on calls made by the gateway.

Working with Supplementary Services

Explains the gateway's support for Call Hold and Retrieve, Call Transfer, and Call Forward.

Networking Capabilities

Ethernet Interface Configuration

Details how to control Ethernet connection modes like manual or auto-negotiate.

NAT (Network Address Translation) Support

Explains NAT mechanisms including STUN for discovering NAT types.

Point-to-Point Protocol over Ethernet (PPPoE)

Describes PPPoE as a method for sending PPP packets over an Ethernet network.

VLANS and Multiple IPs

Covers VLAN implementation and multiple IP address configurations for network integration.

Advanced PSTN Configuration

Clock Settings

Describes configuring gateway clock sources using internal, recovered, or NTP.

Release Reason Mapping

Details mapping mechanisms between SIP responses and Q.850 release causes.

Using ISDN NFAS

Explains the Non-Facility Associated Signaling (NFAS) feature for controlling multiple PRI interfaces.

Redirect Number and Calling Name (Display)

Defines gateway support for redirect number and calling name display across PRI variants.

Tunneling Applications

TDM Tunneling

Explains how to tunnel digital trunk spans or timeslots over an IP network.

QSIG Tunneling

Describes tunneling QSIG messages over SIP using a dedicated message body.

Selected Technical Specifications

General Specifications

Provides general technical specifications for voice compression, silence suppression, and echo cancellation.

Mediant 2000 Specifications

Lists selected technical specifications for the Mediant 2000 gateway.

TP-1610 Specifications

Details selected technical specifications for the TP-1610 blade.

TP-260 Specifications

Lists selected technical specifications for the TP-260 PCI blade.

Supplied SIP Software Package