HP VCX Software manual Introduction, What is a Telecommuting Module?, Configuration alternatives

Page 9

Chapter 1. Introduction

What is a Telecommuting Module?

A Telecommuting Module is a device which processes traffic under the SIP protocol (see RFC 3261). The Telecommuting Module receives SIP requests, processes them according to the rules you have set up, and forwards them to the receiver.

The Telecommuting Module connects to an existing enterprise firewall through a DMZ port, enabling the transmission of SIP-based communications without affecting firewall security. SIP messages are then routed through the firewall to the private IP addresses of authorized users on the internal network.

The Telecommuting Module can also be used as an extra gateway to the internal network without connecting to the firewall, transmitting only SIP-based communications.

Configuration alternatives

The 3Com VCX IP Telecommuting Module can be connected to your network in three different ways, depending on your needs.

Note that if the Standalone type is used, the interface which should receive traffic from the outside must have a public IP address (no NAT).

For a DMZ or DMZ/LAN type which uses a private IP address on the interface connected to the DMZ of the firewall, its corresponding public IP address must be entered on the Interoperability page.

DMZ Configuration

Using this configuration, the Telecommuting Module is located on the DMZ of your firewall, and connected to it with only one interface. The SIP traffic finds its way to the Telecommut- ing Module using DNS or by setting the Telecommuting Module as an outbound proxy on the clients.

This is the most secure configuration, since all traffic goes through both your firewall and your Telecommuting Module. It is also the most flexible, since all networks connected to any of your firewall’s interfaces can be SIP-enabled.

The drawback is that the SIP traffic will pass the firewall twice, which can decrease perfor- mance.

1

Page 8 Page 10
Image 9
Page 8 Page 10
Contents Getting started Guide 3Com VCX IP Telecommuting ModulePage 3Com VCX IP Telecommuting Module Getting started Guide Page Table of Contents Page Part I. Installation of the 3Com VCX IP Telecommuting Module Page Introduction What is a Telecommuting Module?Configuration alternatives DMZ ConfigurationStandalone Configuration DMZ/LAN ConfigurationOverview of the Installation License Conditions About settings in 3Com VCX IP Telecommuting ModuleInstallation Installing 3Com VCX IP Telecommuting ModuleInstallation with magic ping Installation with a serial cablePage Page Page Page Installation with a diskette Page Page Remember to lock up the Telecommuting Module Turning off a Telecommuting ModuleInstalling 3Com VCX IP Telecommuting Module Part II. Configuring 3Com VCX IP Telecommuting Module Page Telecommuting Module Type Network ConfigurationNetwork Configuration Interface Network Interface 1 Telecommuting Module Type configurationGeneral Physical device Directly Connected NetworksStatus Interface nameDNS Name Or IP Address NameIP address Netmask/BitsAlias Static Routing Routed networkRouter Cancel Default GatewayMain Default Gateways SaveGateway Reference Hosts Policy For Packets From Unused GatewaysDynamic InterfaceNetworks and Computers Name SubgroupLower Limit Interface/VLAN Upper LimitDelete Row CreateSurroundings SurroundingsNetwork Additional NegotiatorsData Interfaces Basic Configuration Default domain IP PolicyName of this Telecommuting Module Policy For Ping To Your 3Com VCX IP Telecommuting ModuleDNS Servers Reverts all the above fields to their previous configuration Network Configuration Additional SIP Signaling Ports Basic SettingsSIP Configuration SIP ModuleSIP Media Port Range Provisioning RelayTransport CommentPublic IP address for NATed Telecommuting Module SIP Servers To MonitorServer SIP Logging Log class for SIP signalingLog class for SIP packets Log class for SIP license messagesRouting Log class for SIP errorsDNS Override For SIP Requests Log class for SIP media messagesRelay To DomainSender IP Filter Rules FilteringFrom Network ActionContent Types Default Policy For SIP RequestsContent Type Interoperability URI EncodingAllow Remote SIP Connectivity Remote Clients Signaling ForwardingRemote NAT Traversal Remote NAT traversalNAT timeout for UDP NAT timeout for TCPNAT keepalive method Media Route Administration of the Telecommuting Module Access ControlConfiguration Allowed Via Interface Configuration Transport User Authentication For Web Interface AccessConfiguration via Http Configuration ComputersConfiguration via Https Configuration via SSHDNS Name Or Network Address Netmask/Bits RangeVia IPsec Peer Log Class SSHSave/Load Configuration Duration of limited test modeTest Preliminary Configuration Apply configurationBackup Show Message About Unapplied ChangesSave to diskette Save/Load CLI Command File Revert to Old Configurations Abort All EditsReload Factory Configuration Administration of the Telecommuting Module Firewall and Client Configuration DMZ typeFirewall DMZ/LAN type SIP clientsOther Standalone type SIP clients Apply Index
Related manuals
Manual 446 pages 4.55 Kb
Top Page Image Contents