Nortel Networks Confidential

97

 

 

Security and Administration

How this chapter is organized

This chapter is organized as follows:

“Security” on page 97

“OAM&P strategy” on page 97

Security

The SIP Application Module with Back-to-Back User Agent functionality controls the Media Portal (Media NAT) over an MGCP-type protocol. The SIP Application Module ensures security of clients and the network in the following ways:

Uses MGCP+ to communicate with the Media Portal (over the private LAN) to control which ports are opened or closed.

All signaling traffic traverses the SIP Application Module. It is the only node to which clients terminate SIP signaling.

Hides address assigned by the Enterprise NAT from other users.

Helps maintain connection to clients through NAT and/or firewall by the keep-alive mechanism.

Provides client authentication.

Port 5060 is the only port required to be opened on the public interface.

The SIP Application Module is managed from the private LAN. A management interface is not available from the public interface.

OAM&P strategy

The Management Module performs the security and administrative functions for the SIP Application Module. For additional information on the Management Module, refer to the MCP Management Module Basics and the MCP System Management Console Basics documents.

Copyright © 2003, Nortel Networks

MCP SIP Application Module Basics

Page 96 Page 98
Page 97
Image 97
Nortel Networks NN10029-111 manual Security and Administration
Page 96 Page 98
Top Page Image Contents