Nortel Networks NN10029-111 User Manual
97
Copyright © 2003, Nortel Networks
MCP SIP Application Module Basics
Nortel Networks Confidential
Security and Administration
How this chapter is organized
This chapter is organized as follows:
•
•
Security
The SIP Application Module with Back-to-Back User Agent functionality
controls the Media Portal (Media NAT) over an MGCP-type protocol.
The SIP Application Module ensures security of clients and the network
in the following ways:
controls the Media Portal (Media NAT) over an MGCP-type protocol.
The SIP Application Module ensures security of clients and the network
in the following ways:
•
Uses MGCP+ to communicate with the Media Portal (over the
private LAN) to control which ports are opened or closed.
private LAN) to control which ports are opened or closed.
•
All signaling traffic traverses the SIP Application Module. It is the
only node to which clients terminate SIP signaling.
only node to which clients terminate SIP signaling.
•
Hides address assigned by the Enterprise NAT from other users.
•
Helps maintain connection to clients through NAT and/or firewall by
the keep-alive mechanism.
the keep-alive mechanism.
•
Provides client authentication.
•
Port 5060 is the only port required to be opened on the public
interface.
interface.
•
The SIP Application Module is managed from the private LAN. A
management interface is not available from the public interface.
management interface is not available from the public interface.
OAM&P strategy
The Management Module performs the security and administrative
functions for the SIP Application Module. For additional information on
the Management Module, refer to the MCP Management Module
Basics and the MCP System Management Console Basics documents.
functions for the SIP Application Module. For additional information on
the Management Module, refer to the MCP Management Module
Basics and the MCP System Management Console Basics documents.