nec inrouter quick start guide - issue 1necux5000.com/.../nec_inrouter_qck_start_guide_1.pdf ·...

Notice

Note that when converting this document from its original format to a .pdf file, some minor font and format changes may occur. When viewing and printing this document, we cannot guarantee that your specific PC or printer will support all of the fonts or graphics. Therefore, when you view the document, fonts may be substituted and your individual printer may not have the capability to print the document correctly.

QUICK START GUIDE

INT-2074 (GEN)Issue 1.0

NEC InRouter

Contents of this manual are subject to change without prior notice at the discretion of NECUnified Solutions, Inc. This document has been prepared for the use of employees andcustomers of NEC Unified Solutions, Inc. and may not be reproduced without prior writtenapproval of NEC Unified Solutions, Inc.

Copyright 2008

NEC Infrontia, Inc.6535 N. State Highway 161

Irving, TX 75039-2402

Technology Development

PrefacePreface

THIS MANUAL This guide helps you to install and connect the NEC InRouter to the network. Online help files can be used to further configure the device to meet the specific needs of the environment where it is going to be deployed. This guide also provides example deployment scenarios that can be used as a guideline for the installation.

SUPPORTING DOCUMENTS The following manuals support the NEC InRouter.

NEC InRouter Installation Guide

This manual provides a summary of the features of the NEC InRouter, instructions for installing the NEC InRouter and for accessing the VoIP Operation System (VOS) management software.

NEC InRouter VoIP Operation System (VOS) Guide

This manual is intended for network installers, network operators and security officers. It describes the NEC InRouter VoIP Operation System (VOS). This manual assumes that you have already installed and cabled your device. For more detailed information on the NEC InRouter hardware, refer to your NEC Hardware Manual.

Quick Start Guide i

___________________________________________________________________________________

___________________________________________________________________________________

Table of Contents

Chapter 1 Before You Begin

Chapter 2 Connecting Your NEC InRouter

Step 1 Connect all of the Cables ............................................................2-1

Step 2 Connect to Your NEC InRouter ..................................................2-1

Step 3 Plan your Configuration ..............................................................2-2

Suggested Deployment .............................................................................. 2-2

Installing the NEC InRouter with Existing Infrastructure.............................. 2-6

NEC InRouter Web Based GUI Configurations ........................................... 2-9

ii Table of Contents

___________________________________________________________________________________

___________________________________________________________________________________Issue 1.0 NEC InRouter

THIS PAGE INTENTIONALLY LEFT BLANK

Quick Start Guide iii

___________________________________________________________________________________

___________________________________________________________________________________

List of Figures and Tables

Figure 2-1 Service Provider Deployment ..................................................................................2-3

Figure 2-2 Enterprises Deployment .......................................................................................... 2-4

Figure 2-3 Installing InRouter with Existing Infrastructure ........................................................ 2-6

Table 2-1 NEC InRouter Firewall Port Configuration ............................................................... 2-8

Table 2-2 Web Based GUI Configuration ................................................................................ 2-9

iv List of Figures and Tables

___________________________________________________________________________________

___________________________________________________________________________________Issue 1.0 NEC InRouter

THIS PAGE INTENTIONALLY LEFT BLANK

Quick Start Guide 1 - 1

___________________________________________________________________________________

Chapter 1 Before You Begin

Before installing and connecting the NEC In-Router, you must have:

A computer with a web browser (Microsoft Internet Explorer or Netscape Navigator)At least one ethernet cableThe following information supplied by your VoIP service provider:

IP address of the WAN interfaceT1 frame formatLayer 2 protocol (PPP, Frame Relay/DLCIs or HDLC)

1 - 2 Before You Begin

___________________________________________________________________________________

___________________________________________________________________________________Issue 1.0 NEC In-Router

-- NOTES --

NEC InRouter Iissue 1.0


___________________________________________________________________________________

___________________________________________________________________________________

Figure 2-1 Service Provider Deployment

2 - 4 Connecting Your NEC InRouter

___________________________________________________________________________________

___________________________________________________________________________________Iissue 1.0 NEC InRouter

In these examples a single public IP address on the WAN is used to proxy for all of the IP phones and to route to multiple PCs installed on the LAN.

The NEC InRouter provides the following services:

WAN/LAN IP routing.

NAT/PAT translation for IP phones and PCs. This allows a single public IP address to be used on the WAN link to represent all of the private IP addresses assigned to the LAN IP phones and PCs.

Figure 2-2 Enterprises Deployment



___________________________________________________________________________________

___________________________________________________________________________________

A “VoIP” aware firewall. A full layer 7 gateway for voice traffic and a stateful packet inspection firewall for data traffic.

Traffic shaping and priority queuing to guarantee the quality of VoIP traffic. These mechanisms protect voice and data traffic from contending for the same network resources to guarantee low latency and the highest call quality possible for VoIP traffic. At the same time they ensure the best utilization of WAN bandwidth by enabling data traffic to burst up to full line rate in the absence of voice calls. Precedence is given to traffic for the range of addresses reserved for the IP phones.

Call Admission Control (CAC). CAC uses a deterministic algorithm to decide when there are insufficient network resources available to adequately support new calls and then return the equivalent of a “fast busy” to new call requests.

DHCP server and FTP/TFTP relay.

Passive call quality monitoring and test tools.

NEC InRouter configuration:

Firewall enabled

NAT enabled

Routing enabled

Traffic shaping enabled

DHCP server enabled

VoIP survivability

Benefits:

Security of private IP addresses and voice aware firewall

Traffic shaping prioritizing voice over data traffic

Recover bandwidth for data when not used for voice

Simplified management and administration

Simplified adds, moves and changes

Scalability – the single public IP address can continue to be used for new subscribers to the service.

Increased availability of voice services through VoIP survivability


___________________________________________________________________________________


Installing the NEC InRouter with Existing Infrastructure

In enterprise networks with existing routers and firewalls, the NEC InRouter can be configured as a VoIP application layer gateway only, which maintains the functions and services of the existing network appliances. It allows all of the existing network devices to continue to handle data traffic, while the NEC InRouter handles voice and video traffic as well as provide VoIP survivability.

In the deployment below, the NEC InRouter is connected to a WAN router or broadband modem using its ethernet WAN port. The enterprise Ethernet network is then connected to a LAN port on the NEC InRouter. In this example a single public IP address is used to proxy for all of the IP phones and the NEC InRouter routes data traffic to the public side of the firewall.

The NEC InRouter provides the following services:

WAN/LAN IP routing

NAT/PAT translation for IP phones. This allows a single public IP address to be used on the WAN link to represent all of the private IP addresses assigned to the LAN IP phones.

A “VoIP” aware firewall. A full layer 7 gateway for voice traffic.

Figure 2-3 Installing InRouter with Existing Infrastructure



___________________________________________________________________________________

___________________________________________________________________________________

Traffic shaping and priority queuing to guarantee the quality of VoIP traffic. These mechanisms protect voice and data traffic from contending for the same network resources to guarantee low latency and the highest call quality possible for VoIP traffic. At the same time they ensure the best utilization of WAN bandwidth by enabling data traffic to burst up to full line rate in the absence of voice calls. Precedence is given to traffic for the range of addresses reserved for the IP phones.

Call Admission Control (CAC). CAC uses a deterministic algorithm to decide when there are insufficient network resources available to adequately support new calls and then return the equivalent of a “fast busy” to new call requests.

DHCP server and FTP/TFTP relay. These features are used to simplify and expedite the IP configuration of phones.

Call quality monitoring and test tools.

NEC InRouter configuration:

NAT enabled

Routing enabled

Traffic shaping enabled

DHCP server enabled

VoIP survivability enabled

Benefits:

Security of private IP addresses and voice aware firewall

Traffic shaping prioritizing voice over data traffic.

Recover bandwidth for data when not used for voice

Simplified management and administration

Simplified adds, moves and changes

Scalability – the single public IP address can continue to be used for new subscribers to the service.

Increased availability of voice services through VoIP survivability.


___________________________________________________________________________________


Although not recommended, the NEC InRouter and IP phones can be installed behind an existing enterprise firewall. In this instance, the firewall is configured to allow access to and from the NEC InRouter public IP address for the following ports:

Traffic shaping for this configuration is only available if the enterprise data devices are also installed behind the NEC InRouter.

Table 2-1 NEC InRouter Firewall Port Configuration

Port Type Firewall Ports to Open

UDP 161 (SNMP) and 162 (SNMPTRAP)

RTP 1056 to 1255

TCP SSH TCP 22 for remote management & TCP 80 for WAN configuration-downloads

Telnet 23

FTP TCP 21 for stateful TCP-session control from NEC InRouter to Edgewater FTP server

NTP 123



___________________________________________________________________________________

___________________________________________________________________________________

NEC InRouter Web Based GUI Configurations

The web page configurations for the various NEC InRouter deployments are shown below. The two darker-shaded rows indicate the minimum configuration required for each deployment.

Table 2-2 Web Based GUI Configuration

NEC InRouterGUI

Configuration Page

Suggested Deployment

NEC InRouterwith Existing Infrastructure

NEC InRouter Behind an existing

Firewall

Network Yes Yes Yes

VoIP ALG (Only RTP port monitoring for MOS scoring)

Yes Yes Yes

NAT Yes Optional Yes

Firewall Yes Optional, but recommended

Optional, but recommended

DHCPYes Yes (but should be

disabled if DHCP server already exists)

Yes (but should be disabled if DHCP server already exists)

Traffic Shaper Yes Yes Optional (depends on network topology)

Traffic Simulator Only for testing

Only for testing Only for testing

System As needed As needed As needed


___________________________________________________________________________________


-- NOTES --

QUICK START GUIDE

NEC Unified Solutions, Inc.

Issue 1.0

NEC InRouter

nec inrouter quick start guide - issue 1necux5000.com/.../nec_inrouter_qck_start_guide_1.pdf ·...

Documents