Beruflich Dokumente
Kultur Dokumente
It can help you define these policies as well as enforce them based on network, user, device, and time-of-day.
Solution Overview
The diagrams below show the overall network architecture for this featuring several remote working scenarios.
The endpoints and Internet Protocol Private Branch Exchange (IP-PBX) remain generic so that they can be deployed
with a variety of appliances (see the Endpoint IOT List in Appendix A and the PBX IOT list in Appendix B).
Key differentiators include:
Encryption
Policy Enforcement
Encryption:
The encryption of signaling with Transport Layer Security and media with Secure Real-time Transport Protocol is essential
to provide a more secure remote worker. The endpoints must support Transport Layer Security and Secure Real-time
Transport Protocol for this to work. Proper encryption certificate validation methods are supported for multiple end points.
Trust certifications that provide validation of the certificate by the endpoint is currently supported in the Avaya one-X 96xx
desk phones. This capability will be added to the Avaya one-X mobile communicator and The Avaya Flare Experience SIP
clients in the future.
Policy Enforcement:
Robust and granular policy control is an important capability of the Avaya Session Border Controller Advanced for
Enterprise. It is what allows the enterprise to control things such as international calling rules, codec enforcement, media
streams rules, call volume and time-of-day restrictions.
The diagram below shows the basic remote worker architecture with the Avaya Session Border Controller Advanced for
Enterprise in the demilitarized zone between the internal and external data firewalls. On the left side of the diagram the
private enterprise network consists of the endpoints and the IP-PBX call server. On the right side of the diagram the remote
worker endpoints are coming into the demilitarized zone from the internet (an untrusted network).
Remote Worker Architecture Avaya Session Border Controller Advanced for Enterprise
These remote endpoints register to the Avaya Session Border Controller Advanced for Enterprise securely (with Transport
Layer Security / Secure Real-time Transport Protocol if they support it) and the Avaya Session Border Controller Advanced
for Enterprise proxies them to the call server which is sitting behind the demilitarized zone in the enterprise core (a trusted
network). This provides a highly secure approach extends the unified communications environment to enterprises for SIP
clients on mobile devices, smartphones, tablatures, laptops and desktops as well as teleworker hard phones.
The diagram above shows the remote worker solution in an enterprise that has converted to SIP trunks for their voice
communications with the outside. The remote worker endpoints are registering over the internet to the Avaya Session Border
Controller Advanced for Enterprise in the demilitarized zone. While at the same time the Avaya Session Border Controller
Advanced for Enterprise (or a separate Session Border Controller) is providing Session Border Controller SIP trunk
functionality. Note that the cloud shown to depict the SIP trunk service provider could either be an internet connection or it
could be private IP (Multiprotocol Label Switching).
Avaya remote worker can often be deployed, even if the client has not yet deployed SIP trunks. In the diagram at the top
of page 4, the IP-PBX communicates with a router/gateway that is equipped with Time-division multiplexing (TDM)
interfaces to connect to the carrier for voice trunking. The endpoints in the enterprise core (on the left side) may or may
not be SIP endpoints.
The diagram below shows a very common scenario. Even when SIP trunks are deployed, many enterprises will keep a few
TDM lines in the form of a primary rate interface or several telephone service lines to facilitate the fax, alarm and elevator
lines and for emergency backup Switched Telephone Network connectivity. In this diagram, SIP trunks are supported (along
with the remote workers) by the Avaya Session Border Controller Advanced for Enterprise in the demilitarized zone while at
the same time the IP-PBX can route calls to the router for TDM access.
Remote Worker Avaya Session Border Controller Advanced for Enterprise Pricing Example
Please visit the Quoting and Ordering guide for various pricing examples and ordering assistance.
Posted here http://portal.avaya.com/ptlWeb/products/P0997/OrderingInformation