TANDBERG D13691.03 user manual Call Policy, Making Decisions Based on Addresses, Address-switch

Page 36

TANDBERG Border Controller User Manual

8Call Policy

Your TANDBERG Border Controller allows you to set up policy to control which calls are allowed and even redirect selected calls to different destinations. You specify this policy by uploading a script written in the Call Processing Language (CPL). Each time a call is made the

Border Controller executes the script to decide, based on the source and destination of the call, whether to

Proxy the call to its original destination

Redirect the call to a different destination

Reject the call.

The Border Controller will only execute scripts for source or destinations which are registered directly with the system.

The CPL script is uploaded via the Web interface under the Border Controller Configuration → Files web page.

The execution of the CPL script is controlled by the setting

xConfiguration Gatekeeper Policy Mode <On/Off>

Policy interacts with authentication (section 5.2). If authentication is enabled on the local Border Controller and a call is received from a remote, unauthenticated Gatekeeper, the call’s source aliases will be removed from the call request before it is passed to the policy engine. This is because the unauthenticated source aliases could be forged and so should not be used for policy decisions in a secure environment.

The following sections give details of the Border Controller’s implementation of the CPL language and should be read on conjunction with the CPL standard (RFC 3880[5]).

8.1Making Decisions Based on Addresses

8.1.1 address-switch

The address-switch node allows the script to run different actions based on the source or destination aliases of the call. The address-switch specifies which fields to match and then a list of address nodes contains the possible matches and their associated actions.

The supported attributes on an address-switch and their interpretation are as follows:

field

 

origin

Match against the source aliases.

destination

Match against the destination aliases.

original-destination

Match against the destination aliases.

If the selected field contains multiple aliases then the Border Controller will attempt to match each address node with all of the aliases before proceeding to the next address node i.e. an address node matches if it matches any alias.

29

Page 35 Page 37
Image 36
Page 35 Page 37
Contents Tandberg Border Controller Trademarks and copyright DisclaimerEnvironmental Issues TANDBERG’s Environmental PolicyEnvironmental Considerations Operator Safety Summary Page Contents Software Upgrade Introduction Tandberg Border Controller Overview Installation PrecautionsUnpacking Connecting Cables Switching on the SystemInstallation site preparations MountingBorder Controller Initial Configuration Page System Administration Administrator AccountGetting started Registration Neighbor GatekeepersRoot Account Search Order Alternate Border Controllers Call Control Location decision flow diagram Firewall Traversal Bandwidth Control Page Bandwidth Control and Firewall Traversal Bandwidth Control Examples Network Deployment with firewalls Page Registration Control Registration Restriction PolicyAuthentication Authentication using a local databaseAuthentication using an Ldap server Securing the Ldap connection with TLS URI Dialing Creating DNS SRV recordsPage Example Traversal deployments Simple Enterprise deploymentEnterprise Gatekeepers Dialing Public IP addressesNeighbored enterprises URI dialing from within the enterprisePage Address-switch Call PolicyMaking Decisions Based on Addresses Subfield CPL Script Actions LocationProxy RejectUnsupported CPL Elements CPL ExamplesCall screening Selective Call ScreeningCall Redirection Controlling what is logged LoggingEvent log format Event Levels Logged EventsDNS Event data 245,NTP,DNS,LDAPPage Remote Logging YYYY/MM/DD-HHMMSSSoftware Upgrade Upgrading Using HttpsUpgrading Using SCP Page Command Reference StatusCalls EthernetExternalmanager Feedback11.1.5 IP Ldap11.1.8 NTP PipesRegistrations ResourceUsageAuthentication 11.2 ConfigurationSystemUnit ZonesGatekeeper Page HTTP/HTTPS 11.2.6 IPLdap 11.2.9 Log 11.2.10 NTPOption Key Session Snmp11.2.15 SSH Subzones Telnet TimeZoneTraversal Zones Command Boot AllowListAddAllowListDelete CheckBandwidthDefaultLinksAdd DefaultValuesSetDenyListAdd DenyListDeleteFeedbackRegister FeedbackDeregisterFindRegistration LinkAddOptionKeyAdd OptionKeyDeletePipeAdd PipeDeleteHistory Feedback Other commands AboutClear EventlogRelkey SyslogAppendix Configuring DNS Servers Microsoft DNS ServerVerifying the SRV record Bind 8As expected Appendix Configuring Ldap Servers Microsoft Active DirectoryPrerequisites Adding H.350 objectsOpenLDAP Securing with TLSInstalling the H.350 schemas Add the H.350 objects Electrical Safety ApprovalsEMC Emission Radiated Electromagnetic Interference EMC ImmunityTechnical Specifications Physical Dimensions Power supplyCertification References Glossary Index

D13691.03 specifications

The TANDBERG D13691.03 is a cutting-edge communication device that has been designed to meet the rigorous demands of modern business environments. Known for its reliability and versatility, the D13691.03 offers a comprehensive suite of features that enhance collaboration and productivity for organizations seeking seamless communication solutions.

One of the key characteristics of the TANDBERG D13691.03 is its exceptional video quality. Equipped with advanced video codecs, this device provides users with crystal clear HD video, ensuring that every interaction is as lifelike and engaging as possible. The intelligent bandwidth management technology optimizes the video quality based on the available network conditions, allowing for smooth and uninterrupted communication even in less than ideal network scenarios.

In addition to superior video capabilities, the D13691.03 boasts impressive audio technology. With integrated echo cancellation and noise reduction features, users can enjoy natural and clear audio during calls. This ensures that conversations are not only visually effective but also audibly intelligible, allowing for a more immersive communication experience.

Another notable feature of the TANDBERG D13691.03 is its user-friendly interface. Designed with usability in mind, the device comes with a touchscreen interface that simplifies navigation through the various settings and options. Users can easily connect with colleagues, schedule meetings, and access video conferencing features in just a few taps.

Moreover, the D13691.03 supports various connectivity options, including Ethernet and Wi-Fi, providing users with the flexibility to connect to their networks with ease. The device is also compatible with standard video conferencing protocols, making it an ideal solution for organizations that utilize multiple communication platforms.

The D13691.03 has been designed with security in mind, featuring advanced encryption protocols to protect sensitive data during video calls. This ensures that conversations remain confidential and secure, which is crucial for businesses handling proprietary information.

Overall, the TANDBERG D13691.03 stands out as a robust communication solution that enhances the way organizations interact. With its blend of high-quality video and audio capabilities, user-friendly design, and strong security measures, this device is well-equipped to handle the dynamic needs of modern workplaces, facilitating collaboration and driving productivity. Businesses looking to improve their communication infrastructure will find the TANDBERG D13691.03 to be an invaluable addition to their technology arsenal.
Top Page Image Contents