RedMax EXtreme EX-LRT Instrukcja Naprawy Pobierz pdf (Strona 110)

Oracle SBC Security Guide

If the configuration specifies “pass-through” mode, the SBC will not intercept the crypto attribute

exchange between the caller and the callee. The crypto attribute will be forwarded as it is from the caller

to the callee and vice versa, similarly to previous S-C(X)6.2.0 versions where the cryptos were unaltered

by the SD.

The SBC simply modifies media IP addresses and ports to enable media anchoring (if configured), hence

SRTP flows pass transparently through the SD.

Requirements

Hardware Requirements

SRTP is supported on the Net-Net 3800/4500 platforms and require IPSec network interfaces (NIU),

which allows the use of the encryption needed for SRTP.

# show prom-info PHY

Contents of PHY

Assy, 4 Port SFP with QOS and IPSec

Part Number: 002-0603-58

Serial Number: 090850027933

FunctionalRev: 02.11

BoardRev: 02.00

PCB Family Type: Quad port GiGE SFP PHY

ID: 4 Port GiGE w/QoS &

Encryption

Format Rev: 16

Options: 0

Manufacturer: Benchmark

Week/Year: 50/2008

Sequence Number: 027933

The SSM module is NOT a requirement for SRTP, although typically SRTP is deployed in conjunction

with TLS for SIP. Therefore, TLS is used for encrypting signaling and SRTP is used for encrypting

media. In this case, then the SSM module is also required to run TLS.

# show security ssm

SSM (Security Service Module) V2 present.

If UDP/TCP is used for SIP, then SSM module is not a requirement.

1 2 ... 105 106 107 108 109 110 111 112 113 114 115 ... 141 142

Brak uwag

RedMax EXtreme EX-LRT Instrukcja Naprawy Strona 110