Manuals / Linksys / Communications / Telephone

Linksys SPA932, SPA962, SPA942 Setting System Features, Setting Security Features, SIP Over TLS

Models: SPA942

1 196

Download 196 pages 29.34 Kb

Page 42

Setting System Features

3	Setting System Features
	Setting Security Features

Setting System Features

Use the System tab to enable web server access, set security features, the debug server, and VLAN settings. See the following sections:

•”Setting Security Features” section on page 35•”Ensuring Voice Quality” section on page 37•”Setting System Features” section on page 40•”Setting System Configuration Information” section on page 41•”Setting Internet, IP and PPPoE Information” section on page 42•”Setting Optional Network Parameters” section on page 43•”Configuring VLAN Settings” section on page 44

Setting Security Features

The following features help ensure that your SPA9x2 calls are secure and authenticated.

•”SIP Initial INVITE and MWI Challenge” section on page 35•”SIP Over TLS” section on page 35•”SRTP and Securing Calls” section on page 36

SIP Initial INVITE and MWI Challenge

SIP INVITE (initial) and MWI message in a session can be challenged by the endpoint. The purpose of this challenge is to restrict the SIP servers that are permitted to interact with the devices on the service provider network, which significantly increases the security of the VoIP network by preventing malicious attacks against the device.

In addition, the Auth INVITE option for Lines 1 and 2 enables the challenging of incoming initial SIP INVITE requests.

SIP Over TLS

Transport layer security (TLS) is a standard protocol for securing and authenticating communications over the Internet.

SIP Over TLS eliminates the possibility of malicious activity by encrypting the SIP messages by the SIP proxy of the service provider and the end user. SIP Over TLS relies on the widely- deployed and standardized Transport Layer Security (TLS) protocol. Note that SIP Over TLS encrypts only the signaling messages and not the media. A separate secure protocol such as Secure Real-Time Transport Protocol (SRTP) (see below) can be used to encrypt voice packets.

The TLS protocol has two layers:

Linksys SPA9x2 Phone Administration Guide

35

Image 42

Linksys SPA932 Setting System Features, Setting Security Features, SIP Initial INVITE and MWI Challenge, SIP Over TLS

Contents

Interim version released June 2008 to be updated August Linksys SPA9x2 Phone Administration GuideADMINISTRATION GUIDE BUSINESS SERIESTable of Contents Chapter 1 Introducing Linksys SPA9x2 PhonesChapter 2 Getting Started Chapter 5 Provisioning Basics Chapter 3 Setting System FeaturesChapter 4 Setting SIP Parameters Table of ContentsChapter 6 Setting Regional Parameters Chapter 7 Customizing SPA9x2 PhonesTable of Contents Chapter 9 Customizing Users Chapter 10 Using the SPA932 SidecarChapter 8 Customizing SPA9x2 Extensions Table of ContentsChapter 11 SPA9x2 Phone Field Reference Table of ContentsAppendix C Contacts Appendix B Configuring a Dial PlanAppendix A Creating an LED Script Table of ContentsIntroducing Linksys SPA9x2 Phones Introducing Linksys SPA9x2 PhonesRead Me First Finding Text in a PDFIntroducing Linksys SPA9x2 Phones Related Documentation6. Click Search Read Me First”Additional Phone Features” section on page Basic Phone Features”Basic Phone Features” section on page ”SPA9x2 Phone Configuration Scenarios” section on pageSPS932 Sidecar Attendant for the SPA962 Additional Phone FeaturesAdditional Phone Features Introducing Linksys SPA9x2 PhonesFeatures Requring SIP Support Additional Phone FeaturesIntroducing Linksys SPA9x2 Phones SPA9x2 Phone Configuration Scenarios SPA9x2 Phone Configuration ScenariosIntroducing Linksys SPA9x2 Phones SPA9000 IP PBX System SPA9000 IP PBX SystemIntroducing Linksys SPA9x2 Phones SIP-PSTN UserBGateway Switch Internet WAN Interface Linksys SPA9x2 Phone Administration GuidePSTN switch UserD 1 to 4 DID lines Introducing Linksys SPA9x2 PhonesSession Initiation Protocol and SPA9x2 Phones Session Initiation Protocol and SPA9x2 PhonesSIP Over TCP Introducing Linksys SPA9x2 PhonesSIP Proxy Redundancy Using SPA9x2 Phones with a Firewall or RouterUsing SPA9x2 Phones with a Firewall or Router Introducing Linksys SPA9x2 PhonesNetwork Address Translation and SPA9x2 Phones ”Routers and Service Provider Support of NAT” section on pageNetwork Address Translation and SPA9x2 Phones Introducing Linksys SPA9x2 PhonesSession Border Controllers Routers and Service Provider Support of NATSTUN Server Enable see ”NAT Support Parameters” section on page ”Session Border Controllers” section on pageSimple Traversal of UDP Through NATs STUN Simple Traversal of UDP Through NATs STUNSIP-NAT Interoperation Introducing Linksys SPA9x2 Phones3. Click Admin Login advanced Using SPA9x2 Phones in a VLANUsing SPA9x2 Phones in a VLAN Determining the Type of NAT Used on Your RouterUsing SPA9x2 Phones in a VLAN Introducing Linksys SPA9x2 PhonesShows information about the interfaces your router uses ”Using the Web User Interface” section on page ”Using the Phone Display and Buttons” section on page”Using the LCD Screen” section on page ”Using the Personal Directory” section on pageDownloading the Firmware Downloading the FirmwareUpgrading SPA9x2 Firmware Getting StartedUsing the Phone Display and Buttons Using the Phone Display and ButtonsGetting Started Phone Feature see Appendix A Creating an LED ScriptUsing the Phone Display and Buttons Getting StartedUsing the LCD Screen Using the Web User InterfaceGetting Started Administrator and User Views Using the Web User InterfaceGetting Started http//phone.ip.address/admin Administrator PrivilegesAdmin Login Web Pages Using the Web User InterfaceUsing the Personal Directory Using the Personal DirectoryUser Login Web Pages Basic and Advanced ViewsViewing Call History Web Admin TabsSetup 3 Call History Caller and Called Name MatchingSee Chapter 3, Setting System Roadmap to Web UI FeaturesRoadmap to Web UI Features FeaturesSee Chapter 7, Customizing See Chapter 6, Setting RegionalSee Chapter 5, Provisioning SPA9x2 PhonesSidecar Obtaining Phone Information Info TabObtaining Phone Information Info Tab See ”System and ProductSystem and Product Information System and Product InformationProduct Information Notes ”Line and Call Status Information”Phone Status Notes Phone Status InformationUnderstanding Lines, Calls, and Shared Call Appearances Phone Status InformationUnderstanding Lines, Calls, and Shared Call Appearances Understanding ExtensionsShared Line or Call Appearances Getting StartedExtension Status Information Extension Status InformationLine Key LEDs Getting StartedLine and Call Status Notes Line and Call Status InformationExtension Status Notes Line and Call Status InformationRing Tone Notes Downloaded Ring TonesWhat’s Next? Downloaded Ring TonesWhat’s Next? Getting StartedSetting System Features Setting System FeaturesSetting Security Features Setting Security FeaturesSetting System Features SRTP and Securing Calls4. Click Submt All Changes Setting Security FeaturesSecure Call Indication Tone Ensuring Voice QualitySupported Codecs Ensuring Voice QualityBandwidth Requirements Setting System FeaturesEnsuring Voice Quality Factors Affecting Voice Quality Setting System FeaturesEnsuring Voice Quality ”Setting a Static IP Address on the IP Phone” section on page Setting System FeaturesSetting System Features Setting System FeaturesSetting System Configuration Information Setting System Configuration InformationSystem Configuration Notes Setting System FeaturesSetting Internet, IP and PPPoE Information Setting Internet, IP and PPPoE InformationSetting a Static IP Address on the IP Phone DHCP and PPPoE NotesSetting Optional Network Parameters Setting Optional Network ParametersOptional Network Configuration Notes Setting System FeaturesConfiguring VLAN Settings Configuring VLAN SettingsVLAN Settings Notes Setting System Features”SIP Parameters” section on page ”SIP Timer Values” section on page Setting SIP ParametersSetting SIP Parameters SIP ParametersSIP Parameters SIP Parameter NotesSetting SIP Parameters ParameterSIP Parameters Setting SIP Parameterssee Chapter 10, Using the SPA932 Sidecar ParameterSIP Timer Values SIP Timer ValuesSIP Timer Notes Setting SIP ParametersParameter Setting SIP ParametersSIP Timer Values DescriptionMinimum and maximum random delay to be added to the long added to the short timerREGISTER after a failure. RegRetryLongRandomDelay Long Intvl when retrying REGISTER after a failureRTP Notes RTP ParametersResponse Status Notes RTP ParametersSDP Payload Parameters SDP Payload TypesNAT Support Parameters SDP Payload TypesLinksys Key System Notes Linksys Key System ParametersNAT Support Parameter Notes Linksys Key System Parameters”Using HTTPS” section on page ”Upgrading, Resyncing, and Rebooting Phones” section on page”Configuration Access Control” section on page ”Firmware Upgrade Parameters” section on pageSPA9x2 Configuration Profiles SPA9x2 Configuration ProfilesProvisioning Configuration from Phone Keypad Provisioning BasicsSPA9x2 web UI Provisioning Firmware Upgrade Upgrade Enable yes Upgrading, Resyncing, and Rebooting PhonesUpgrading, Resyncing, and Rebooting Phones Upgrading Firmware on a PhoneUpgrading, Resyncing, and Rebooting Phones Rebooting a PhoneResyncing a Phone Provisioning Basicshttps//prov.supervoip.com/linksys-init Redundant Provisioning ServersRetail Provisioning Redundant Provisioning ServersAutomatic In-House Preprovisioning Configuration Access ControlUsing HTTPS Automatic In-House PreprovisioningHow HTTPS Works Firmware Upgrade ParametersUsing HTTPS Server CertificatesProvisioning Basics Using HTTPSProfileRule. Defines upgrade conditions and associated firmware URLs ParameterGeneral Purpose Parameters Sample Configuration FileSample Configuration File Provisioning Basics”Control Timer Values sec” section on page Setting Regional ParametersSetting Regional Parameters ”Vertical Service Activation Codes Star Codes” section on pageExample 1 Normal Ring Advanced Scripting for Cadences, Call Progress Tones, and Ring TonesSetting Regional Parameters Example 2 Distinctive Ring short,short,short,longSetting Regional Parameters Advanced Scripting for Cadences, Call Progress Tones, and Ring TonesSetting Regional Parameters Advanced Scripting for Cadences, Call Progress Tones, and Ring Tones1 = A classic phone with mechanical bell 2 = Typical phone ring Call Progress Tones Call Progress TonesCall Progress Tones Notes Setting Regional ParametersDistinctive Ring Patterns Control Timer Values secControl Timer Value Notes Ring Pattern NotesSetting Regional Parameters Vertical Service Activation Codes Star CodesVertical Service Activation Codes Star Codes FieldVertical Service Activation Code Notes Setting Regional ParametersVertical Service Activation Codes Star Codes Setting Regional Parameters Vertical Service Activation Codes Star CodesReferral Services Codes One or more * code can b* codee configured into this parameter, such as *98, or *97*98*123, and so on. The maximum total length is 79 characters Using Star Codes to Activate/Deactivate Services Setting Regional ParametersVertical Service Activation Codes Star Codes Vertical Service Announcement Codes Vertical Service Announcement CodesDisabling/Deactivating Services Setting Regional ParametersVertical Service Announcement Notes Setting Regional ParametersVertical Service Announcement Codes 10 Do Not Disturb DDT DND enabled DDF DND disabled Setting Regional ParametersVertical Service Announcement Codes WDF CWCID disabled 13 Block Anonymous callOutbound Call Codec Selection Codes Configuring Daylight Savings Time” Daylight Saving Time Examples”Miscellaneous Parameters Outbound Call Codec Selection NotesDTMF Notes Setting Regional ParametersMiscellaneous Parameters Localizing Your SPA9x2 Phone Localizing Your SPA9x2 PhoneManaging the Time and Date Setting Regional ParametersConfiguring Daylight Savings Time Setting Regional ParametersLocalizing Your SPA9x2 Phone Selecting a Language Selecting a LanguageDaylight Saving Time Examples Setting Regional ParametersCreating a Dictionary Server Script Setting Regional ParametersSelecting a Language Selecting a Language Setting Regional ParametersLinksys SPA9x2 Phone Administration Guide For example DictionaryServerScript ua=na”Using Call Parking” section on page ”Using the Photo Album Feature on the SPA962” section on page”Supplementary Services Parameters” section on page ”Using Call Pick Up and Group Call Pick Up” section on pageCustomizing SPA9x2 Phones service provider often hosts a voice mail service. Theadvantages of hosted voicemail include General Phone Information6. Click Submit All Changes Using the Photo Album Feature on the SPA962Changing the Display Background SPA942/962 Customizing SPA9x2 PhonesLine Key Notes Configuring Shared Line Extension on SPA9x2 PhonesLine Key Information Line Key InformationCustomizing SPA9x2 Phones Miscellaneous Line Key Settings NotesLine Key LED Pattern Notes Line Key Information“c” indicates “color” the color of the LED Customizing SPA9x2 PhonesLine Key Information “r” indicates “red” a red-colored LEDSupplementary Services Parameters Supplementary Services ParametersSupplementary Services Notes Customizing SPA9x2 Phoneseavesdrop on the conversation. To enable this feature the Supplementary Services ParametersEnables/Disables Call pick up feature see ”Using Call Pick Up and Group CallUsing Call Pick Up and Group Call Pick Up Using Group PagingUsing Call Parking Supplementary Services ParametersRing Tone Parameters Ring Tone ParametersCustomizing SPA9x2 Phones Managing Ring Tones Customizing SPA9x2 PhonesRing Tone Parameters Audio Input Gain dB and Extension Mobility Settings Audio Input Gain dB and Extension Mobility SettingsUsing Extension Mobility Extension Mobility Notes”General, Shared Line Appearance, and NAT Settings” section on page General, Shared Line Appearance, and NAT SettingsGeneral, Shared Line Appearance, and NAT Settings ”Network Settings and SIP Settings” section on pageCustomizing SPA9x2 Extensions NAT Settings NotesGeneral, Shared Line Appearance, and NAT Settings ParameterSIP Settings Notes Network Settings and SIP SettingsNetwork Settings Notes Network Settings and SIP SettingsWhen enabled, authorization is required for initial incoming If this feature is enabled, the IP telephony ignores furtherDefaults to no StickyCall Feature Settings Call Feature SettingsCall Feature Notes Customizing SPA9x2 ExtensionsProxy and Registration Parameters Proxy and Registration ParametersCustomizing SPA9x2 Extensions 1. Select Admin Advanced Configuring a SIP Proxy ServerConfiguring a SIP Proxy Server Customizing SPA9x2 ExtensionsSubscriber Information Notes Audio Configuration ParametersSubscriber Information Parameters Subscriber Information ParametersAudio Configuration Parameters Customizing SPA9x2 ExtensionsCustomizing SPA9x2 Extensions Audio Configuration NotesAudio Configuration Parameters ParameterDial Plan Parameters Defaults to yesDial Plan Parameters in outbound SDPCustomizing SPA9x2 Extensions Dial Plan NotesSee Appendix B Configuring a Dial Plan for more detailed Dial Plan ParametersParameter Customizing SPA9x2 ExtensionsDial Plan Parameters Description”Web Information Service Settings SPA962 Only” section on page ”Supplementary Services” section on page”Setting RSS Newsfeeds on the SPA962 Phone” section on page ”Audio Volume Settings” section on pageSupplementary Services Notes Supplementary ServicesSupplementary Services Customizing UsersSetting RSS Newsfeeds on the SPA962 Phone Setting RSS Newsfeeds on the SPA962 PhoneWeb Information Service Settings SPA962 Only Customizing UsersTraffic Information Settings Audio Volume SettingsWeb Information Service Notes Audio Volume NotesPhone LCD Notes Phone GUI Color Settings SPA962 OnlyPhone GUI Color Settings SPA962 Only Customizing Users”Configuring the SPA9000 for the SPA932” section on page Using the SPA932 SidecarUsing the SPA932 Sidecar ”Configuring the Broadsoft Server for the SPA932” section on pageSetting Up the SPA932 Sidecar Using the SPA932 SidecarSetting Up the SPA932 Sidecar Using the SPA932 Sidecar Configuring the SPA9000 for the SPA932Configuring the Broadsoft Server for the SPA932 Setting Up the SPA932 SidecarConfiguring the Asterisk Server for the SPA932 Using the SPA932 SidecarSetting Up the SPA932 Sidecar Configuring the SPA932 Using the SPA932 SidecarSetting Up the SPA932 Sidecar Using the SPA932 Sidecar Unit/Key Configuration Scripts10. Click Submit All Changes Setting Up the SPA932 SidecarUsing the SPA932 Sidecar SPA9000 SyntaxBroadsoft syntax Setting Up the SPA932 SidecarUsing the SPA932 Sidecar SPA932 Parameter NotesAsterisk syntax Setting Up the SPA932 SidecarMonitoring the SPA932 Monitoring the SPA932SPA932 Unit Monitoring Notes Using the SPA932 SidecarUsing the SPA932 Sidecar Monitoring the SPA932Line Station Subscribe SPA9x2 Phone Field Reference SPA9x2 Phone Field ReferenceInfo Tab System InformationIndicates any additional licenses that you have installed Product InformationPhone Status SPA9x2 Phone Field ReferenceInfo Tab Ext StatusSPA9x2 Phone Field Reference Total number of RTP packets sent including redundantLine /Call Status SPA9x2 Phone Field ReferenceInfo Tab Internet Connection Type and Static IP Settings, page System ConfigurationSystem Configuration, page Optional Network Configuration, page VLAN Settings, pageLets you enable or disable local access to the web UIweb Internet Connection Type and Static IP SettingsPPPoE Settings SPA9x2 Phone Field ReferenceSPA9x2 Phone Field Reference Optional Network ConfigurationThe debug server name and port. This feature specifies System TabSIP Tab VLAN SettingsSIP Parameters, page SIP Timer Values sec, page SIP ParametersNumber of times an invite can be redirected to avoid an SPA9x2 Phone Field ReferenceSIP Tab this is not specified, the SIP User Agent Name is alsoEnables support for the Broadsoft Hold Package, which Enables support for the Broadsoft Talk Package, whichenables a user to answer or resume a call by clicking a which enables a user to start a conference by clicking aSIP Tab SIP Timer Values secSPA9x2 Phone Field Reference INVITE final response, time-out value, which can rangeSPA9x2 Phone Field Reference Response Status Code HandlingDefaults to blank, which disables the exponential back SIP TabSIP Tab RTP ParametersSPA9x2 Phone Field Reference reception. RTP Port Min and RTP Port Max shouldSIP Tab attempts to compute the round trip delay and show it asSPA9x2 Phone Field Reference connection. It can range from 0 to 255 seconds. DuringSIP Tab SDP Payload TypesSPA9x2 Phone Field Reference RTP-Start-Loopback DynamicSPA9x2 Phone Field Reference SIP TabG711u Codec Name NAT Support Parameters SPA9x2 Phone Field ReferenceSIP Tab Linksys Key System Parameters SPA9x2 Phone Field ReferenceSIP Tab Provisioning Tab Control Timer Values sec, pageVertical Service Activation Codes, page Regional TabPlayed when a call is waiting. Defaults to 440@-1030.3 Regional TabPlayed when a 486 RSC is received for an outbound call SPA9x2 Phone Field ReferencePlayed instead of the Dial Tone when there are unheard an error occurs as a caller makes an outbound call. TheRSC to trigger this tone is configurable on the SIP screen Played to all parties when a three-way conference call isDistinctive Ring Patterns Defaults to60.2/.4,.2/.4,.2/4Defaults to 600.25/9.75 SPA9x2 Phone Field ReferenceLong timeout between entering digits when dialing. The Control Timer Values secVertical Service Activation Codes The InterdigitLongTimer is used after any one digit, ifRegional Tab Starts a callback when the last outbound call is not busySPA9x2 Phone Field Reference Forwards busy calls to the extension specified after theSPA9x2 Phone Field Reference Regional TabCW Per Call Act Code SPA9x2 Phone Field Reference Regional TabSecure One Call Deact Code Referral Services Codes SPA9x2 Phone Field ReferenceRegional Tab Feature Dial Services Codes SPA9x2 Phone Field ReferenceRegional Tab Outbound Call Codec Selection Codes Vertical Service Announcement CodesSPA9x2 Phone Field Reference Regional TabSPA9x2 Phone Field Reference Regional TabMiscellaneous SPA9x2 Phone Field ReferenceRegional Tab Daylight Savings Time Enable SPA9x2 Phone Field ReferenceRegional Tab General, page Phone TabPhone Tab SPA9x2 Phone Field ReferenceGeneral Line Key, page Miscellaneous Line Key Settings, pageLine Key LED Pattern, page Supplementary Services, page Ring Tone, page Auto Input Gain dB, pageLine Key SPA9x2 Phone Field ReferencePhone Tab SPA9x2 Phone Field Reference Miscellaneous Line Key SettingsLine Key LED Pattern Phone TabLED pattern during the Remote Ringing state, where the LED pattern when the Call Appearance is disabled notLED pattern during the Local Ringing state, when the call LED pattern during the Local Active state, where the callSPA9x2 Phone Field Reference Supplementary ServicesLED Pattern when the corresponding extension is trying Phone TabSPA9x2 Phone Field Reference Ring Tonecenters. Typically enabled with the SIP-B parameter Phone TabAuto Input Gain dB SPA9x2 Phone Field ReferencePhone Tab Ext Tab General, page Share Line Appearance, page NAT Settings, pageNetwork Settings, page SIP Settings, page Call Feature Settings, page Extension MobilitySPA9x2 Phone Field Reference Audio Configuration, page Dial Plan, pageShare Line Appearance GeneralSPA9x2 Phone Field Reference NAT SettingsNetwork Settings Ext TabSPA9x2 Phone Field Reference SIP SettingsControls how the jitter buffer should be adjusted. Select Ext Tabsettings Referor, Refer Target, Referee, and Refer-To SPA9x2 Phone Field ReferenceExt Tab response for an outbound INVITE. To enable this feature listen port. This feature controls which SIP messages toIf this feature is enabled, the IP telephony ignores further SPA9x2 Phone Field Referenceoutbound proxy is contacted. Music-on-hold is disabled Call Feature Settingsserver. When only a user ID is specified, the current or Defaults to imusic when used with a SPA9000 IP PBXSPA9x2 Phone Field Reference Defaults toSpecifies whether to enable a SIP-B feature regarding the Ext TabExt Tab Proxy and RegistrationSPA9x2 Phone Field Reference Outbound Proxy is no or Outbound Proxy is emptySPA9x2 Phone Field Reference Subscriber InformationUsing multiple DNS A record per server name does not Ext TabExt Tab Audio ConfigurationSPA9x2 Phone Field Reference Preferred codec for all calls. The actual codec used in a call stillTo enable silence suppression so that silent audio frames are SPA9x2 Phone Field ReferenceExt Tab User Tab User TabDial Plan SPA9x2 Phone Field ReferenceTraffic Service Information Settings SPA962, page Audio Volume, page Call Forward, page Speed Dial, page Supplementary Services, pageWeb Information Service Settings SPA962, page Phone GUI Menu Color Settings SPA962 only, pageAudio Volume Web Information Service Settings SPA962Traffic Service Information Settings SPA962 Phone GUI Menu Color Settings SPA962 onlyUnit 2, page -179General, page General, page Unit 2, page -179General 932 Tab SPA962 only932 Tab SPA962 only Linksys SPA9x2 Phone Administration GuideUnit script is described in ”Unit/Key Configuration Scripts”SPA932 Status SPA932 StatusUnit 1-Displays information about the first SPA932 sidecar unit SPA9x2 Phone Field ReferenceSPA932 Status subscription expires, the SPA932 automatically requests a newCreating an LED Script Creating an LED ScriptLED Script LED Script ExamplesLED Pattern Creating an LED ScriptConfiguring a Dial Plan Configuring a Dial PlanDial Plan Digit Sequences Element Repetition Dial Plan RulesDigit Sequence Syntax Sub-sequence SubstitutionL delay-valuespace Interdigit Timer Master OverrideLocal Timer Overrides P delay-value spaceInterdigit Short Timer Dial Plan TimersInterdigit Long Timer InterdigitLongTimer defaults to InterdigitShortTimer defaults toDial Plans Configuring a Dial PlanEU Contacts ContactsUS/Canada Contacts Contacts8060952NC-EW