Nortel Networks 553-3001-358, 555-4001-135 - page 41

Engineering guidelines 41

Nortel Integrated Conference Bridge Service Implementation Guide

Hosts that need to be accessed from the World Wide Web must be

placed in a special sub-network called the Green and Red LAN. The

firewall isolates the Green and Red LAN from the C-LAN. Devices that

can be accessed from the World Wide Web are put into this segregated

LAN segment. Nortel Networks recommends that the Green and Red

LAN be the location of the ICB connection.

On the other hand, C-LAN hosts require open access to the ICB for

administration and maintenance.

Table 3 summarizes the recommended access permissions allowed by

the firewall. All other paths not in the table should be denied.

Notes

Take the following notes into consideration:

• Technically, a firewall can be configured to enforce these access

restrictions even when the ICB is in the C-LAN. However, a Green

and Red LAN is usually used, because it is safer.

• Cards of a dual-ICB set must be in the same LAN segment, with no

restrictions between them.

LAN/intranet access only

In this configuration, the ICB is not accessible from anywhere in the

World Wide Web (assuming this policy is enforced by the firewall).

There are two options for this type of configuration: C-LAN connection

and E-LAN connection.

Figure 7 on page 42 shows an example of the C-LAN connection.

Tabl e 3

Firewall access permissions

Source Destination Protocol

WWW ICB HTTP

C-LAN ICB HTTP, FTP, TELNET

ICB WWW FTP (optional; allows upgrade from the

web)

ICB C-LAN FTP

ICB Mail Server SMTP

Contents

Main Page Nortel Communication Server 1000/ Nortel Communication Server 2100/Meridian SL-100 Nortel Integrated Conference Bridge Service Implementation Guide Page Page Page Contents About this document 13 Product description 17 Engineering guidelines 35 viii Contents 553-3001-358/555-4001-135 Standard 02.00 July 2006 Installation and configuration 45 Browser user interface 79 Contents ix Telephone user interface 135 Microsoft Outlook GUI 151 Maintenance 169 x Contents 553-3001-358/555-4001-135 Standard 02.00 July 2006 Reports 195 Upgrades 211 Appendix A: Password security 223 Page Page About this document Purpose and audience Structure How to check the version and issue of this document References in this document Page Product description ICB description Page Page Page Hardware overview 22 Product description 553-3001-358/555-4001-135 Standard 02.00 July 2006 Figure 1 ICB system composition Page Page Page Page ICB operation Page Product description 29 Figure 3 Call routing with chairperson access ICB Port 0 ICB Port 4 ICB Port 31 Page Page 32 Product description 553-3001-358/555-4001-135 Standard 02.00 July 2006 Figure 5 Single DN access method (two ICB cards) Note: All DNs on the left side of the figure must be DID numbers. Page Page Engineering guidelines System requirements Page System capacity System compatibility Automatic call distribution resource allocation Page LAN configuration Page 42 Engineering guidelines 553-3001-358/555-4001-135 Standard 02.00 July 2006 Figure 7 LAN/intranet access only C-LAN connection Figure 8 on page 43 shows an example of the E-LAN connection. Page Page Installation and configuration Getting started Page CS 1000 configuration Page Page Page Page Page Page Page CS 2100/Meridian SL-100 configuration Page Page 58 Installation and configuration 553-3001-358/555-4001-135 Standard 02.00 July 2006 Page Page Installation and configuration 61 Figure 20 Dual-card conference, 1 conference, 62 ports Page Page 64 Installation and configuration 553-3001-358/555-4001-135 Standard 02.00 July 2006 Procedure 3 Configure a dual-card conference ICB installation and configuration procedures Page Page Page Page 70 Installation and configuration 553-3001-358/555-4001-135 Standard 02.00 July 2006 Procedure 10 Access the ICB remotely using a LAN hub Option 11C or CS 1000 Procedure 11 Install ICB cards Installation and configuration 71 Procedure 12 Set up CLI access from the maintenance terminal ICB Installation Wizard Page Page Installation and configuration 75 Table 14 Basic Card Settings parameters (Continued) Page Page Page Browser user interface Page Page Page Page Page Page Scheduling BUI ICB Home Page Page Page Page Page Browser user interface 91 Table 20 Scheduling window fields (Continued) Page Page Page Browser user interface 95 Table 21 Scheduling window Options section fields (Continued) Page Page Chairperson operations Page 100 Browser user interface 553-3001-358/555-4001-135 Standard 02.00 July 2006 Table 22 Meeting Control window fields (Continued) Page Page Page Page Administration BUI 106 Browser user interface 553-3001-358/555-4001-135 Standard 02.00 July 2006 Figure 51 Administration BUI navigation flowchart Reports ICB Home Page Login dialog box Return to Dashboard Settings Upgrades Backup Page Page Browser user interface 109 Tabl e 23 General Settings window fields Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Browser user interface 133 Page Telephone user interface TUI operation during an active conference Page *0 888 1234 9097289134512# *0 7776 1234 9097289134512# Page Page Page Page Page 123 456 789 * 0 # Page TUI services Page Page Page Page Microsoft Outlook GUI Page Page Page Microsoft Outlook GUI 155 Page Page Page Page Scheduling a new conference Page Page Page 164 Microsoft Outlook GUI 553-3001-358/555-4001-135 Standard 02.00 July 2006 Page Page Setting a delegate user for Microsoft Outlook Calendar Page Maintenance Maintenance overview Page Page Updating the Microsoft Outlook GUI ICB form Page Diagnostic tools Page Page Page CLI command summary Page 180 Maintenance 553-3001-358/555-4001-135 Standard 02.00 July 2006 Table 46 ICB CLI command summary (Continued) ICB fault isolation and correction Page Error message handling Page Page 186 Maintenance 553-3001-358/555-4001-135 Standard 02.00 July 2006 Procedure 39 Configure error message filtering Backup and restore procedures Page Page Page Page Page Page Page Reports Page Short Connection Report Meetings Log Report Page Overbooking Report Page Billing Report Page Page Page Page Page Page Maintenance (Error) Report Page Upgrades Page Page Planning for an upgrade Upgrades 215 Upgrade procedures Table 57 User community upgrade considerations (Continued) Page Page Page Page Page Page Page Appendix A: Password security 224 Appendix A: Password security 553-3001-358/555-4001-135 Standard 02.00 July 2006 Access permissions Unsuccessful login attempt handling Password parameters summary Reset passwords Page Page 230 Appendix A: Password security 553-3001-358/555-4001-135 Standard 02.00 July 2006 n m s Application Protocol Port Numbers Page Appendix B: Product integrity Environmental specifications Regulatory standards Page FCC Compliance MTBF List of terms Page Page Page Page Page Page Nortel Communication Server 1000 Nortel Communication Server 2100/Meridian SL-100 Nortel Integrated Conference Bridge Service Implementation Guide