Versions Compared

Old Version 1

changes.mady.by.user Kelli Higdon

Saved on

compared with

New Version Current

changes.mady.by.user Kelli Higdon

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Table of Contents
minLevel1
maxLevel6
outlinefalse
stylenone
typelist
printablefalse

Secure Real Time Protocol (SRTP) is first enabled on the physical node object. Once SRTP is enabled on the node it can then be enabled on the individual SIP channel groups. Before configuring the SRTP functionality on the IMG 2020, TLS security must first be configured to encrypt the SIP signaling messages. Refer to the Configure TLS topic for information on configuring TLS functionality.

...

TLS needs to have a license labeled Secure Communications loaded on the IMG 2020 to function. Verify that the Secure Communications license has been downloaded to the IMG 2020 by clicking on the License Info object in the Web GUI and confirming that the license is displayed in the Secure Communications field. If no Secure Communications license is installed, a new license file with the Secure Communications license added to it must be downloaded. Once the new license is acquired, refer to the Licensing (Gateway Mode) topic for information on how to download the new license.

...

Before configuring SRTP, the basic functionality must first be configured to the IMG 2020. Refer to the link Basic Configurations to configure the initial objects that need to be created before proceeding on with the configuration of the TLS and SRTP functionality. The Basic Configurations topic sets up objects such as T1/E1 Profiles, T1/E1 DS-1's and ANSI/ITU ISUP Group profiles needed prior to configuring these functions.

...

SRTP cannot function without the Transport Layer Security (TLS) functionality being configured first. Before configuring SRTP, the TLS functionality must first be configured. Refer to the Configure TLS topic for information on how to configure TLS.

...

SRTP Mode description

  • Disable:The crypto information within the RTP packets will be analyzed. Any crypto information within an SRTP packet will be rejected with 488 Unacceptable Media.

  • Mandatory:The crypto information within the RTP packet will be rejected. Only crypto information within an SRTP packet will be analyzed.*

  • RTP fallback:The crypto information within the SRTP packet will be analyzed. If crypto information within the SRTP packet is not acceptable (No SRTP encryption), fall back to SDP information within the RTP packet.

  • Refer to the SIP Profile - SGP topic for information on configuring the remaining fields

...

The external gateway object configures certain parameters used to communicate with an external gateway. Each external gateway that employs TLS and SRTP will need the SIP profile configured for TLS and SRTP linked to it. In this example, the gateway that was initially configured in the Configure TLS topic will be modified to add the SRTP secure profile to it.

...

  • Right click on the Dialogic object and select New Routing Configuration. The Routing configuration object is a container or parent object and no configuration is needed here. Refer to the Routing Configuration topic for more information on this object.

  • Right click on the Routing Configuration object just created and select New Channel Groups. The Channel Groups object is a container object also and no configuration is needed here. Refer to the Channel Groups topic for more information on this object.

  • Right click on the Channel Groups object and select New Channel Group. Enter a name in the Name field that identifies this channel group.

  • Select SIP from the drop down menu of the Signaling Type field. Refer to the Channel Group topic for more information on configuring the remaining fields.

  • Right click on the Channel Group object and select New IP Network Element. Select gateway object configured earlier that has the TLS and SRTP profiles linked to it. See screen capture below

...