Cisco Unified Border Element (SP Edition) Configuration Guide: Unified Model - Cisco Unified Border Element (SP Edition) Overview [Cisco ASR 1000 Series Aggregation Services Routers]

Table Of Contents

Cisco Unified Border Element (SP Edition) Overview

Contents

Cisco Unified Border Element (SP Edition) on the Cisco ASR 1000 Series Routers

Cisco Unified Border Element (SP Edition) Features on the Cisco ASR 1000 Series Routers

Supported MIBs

Cisco Unified Border Element (SP Edition) Overview

This chapter presents an overview of Cisco Unified Border Element (SP Edition) on the Cisco ASR 1000 Series Aggregation Services Routers—its signaling and media functions, unified and distributed deployment models, supported features, and supported MIBs.

Cisco Unified Border Element (SP Edition) was formerly known as Integrated Session Border Controller and may be commonly referred to in this document as the session border controller (SBC).

Contents

•Cisco Unified Border Element (SP Edition) on the Cisco ASR 1000 Series Routers

•Cisco Unified Border Element (SP Edition) Features on the Cisco ASR 1000 Series Routers

•Supported MIBs

Cisco Unified Border Element (SP Edition) on the Cisco ASR 1000 Series Routers

Cisco Unified Border Element (SP Edition) enables direct IP-to-IP interconnect between multiple administrative domains for session-based services providing protocol interworking, security, and admission control and management. Cisco Unified Border Element (SP Edition) is a voice over IP (VoIP) device that sits on the border of a network and controls call admission to that network.

Cisco Unified Border Element (SP Edition) protects the interior of the network from excessive call load and malicious traffic. Cisco Unified Border Element (SP Edition) provides additional functions such as media bridging and billing services.

Cisco Unified Border Element (SP Edition) is integrated into the Cisco IOS Software and does not require any additional hardware to run.

The SBC service includes two functional areas:

•Signaling SBC function—Managed by the signaling border element (SBE), controls access of VoIP signaling messages to the core of the network, and manipulates the contents of these messages. It does this by acting as a Session Initiation Protocol (SIP) back-to-back user agent (B2BUA).

•Media SBC function—Managed by the data border element (DBE), controls access of media packets to the network, provides differentiated services and quality of service (QoS) for different media streams, and prevents service theft. It does this by acting as a real-time transport protocol (RTP) proxy.

For Cisco IOS XE Release 2.4, Cisco Unified Border Element (SP Edition) can operate in two modes or deployment models. :

•Unified—In the unified model, both the SBE and DBE logical entities co-exist on the same network element. In this model, the signaling entity controls the media local to the router. Simply put, the SBE handles the SIP and H.323 packets and the DBE handles the RTP and RTCP packets.

•Distributed—In the distributed model, the SBE and the DBE entities reside on two different network elements. Logically, each of the SBE entities controls multiple DBE elements, and each DBE could be controlled by multiple SBE entities. The SBE interacts with the DBE entities using a session controller interface (SCI). The SCI interface supports the H.248 protocol.

In this model, the bearer always flows through the DBE, and the SBE participates only in the signaling flow. This model is typically used in conjunction with a third-party SBE that supports the DBE H.248 profile.

Note It is important to note that the DBE configuration is still required when running in the unified model because the DBE configuration provides the information necessary for the RTP media to flow.

Note For Cisco IOS XE Release 2.3 and earlier, the SBC supports only DBEs in the distributed model.

Figure 1 illustrates the unified mode. Figure 2 illustrates the relationships between SBEs, DBEs, and other network elements.

Figure 1 Relationships Between SBEs/DBEs and Other Network Elements in the Unified Model

Figure 2 Relationships Between SBEs/DBEs and Other Network Elements in the Distributed Model

Cisco Unified Border Element (SP Edition) Features on the Cisco ASR 1000 Series Routers

Table 1-1 shows which Cisco Unified Border Element (SP Edition) features are supported in the unified model.

Table 1-1 Cisco Unified Border Element (SP Edition) Features Supported in the Unified Model

Topic

Supported Features for Topic and Where Feature Is Located

Overview

Cisco Unified Border Element (SP Edition) Overview

SBC Configuration

Configuring Cisco Unified Border Element (SP Edition), page 2-1: Configuring Unified Model and Image Upgrade Procedure

Appendix A: End-to-End Cisco Unified Border Element (SP Edition) Configuration Example, page A-1

Implementing Adjacencies

Implementing Adjacencies on Cisco Unified Border Element (SP Edition), page 9-1:

–Configuring Force-Signaling-Peer Adjacency

–Configuring a SIP Adjacency

–Assigning SIP Ajacencies to Adjacency Groups

–SIP UAS Failure Detection

–SIP Outbound Flood Protection

–SIP Over TLS

Media Address Pools

Media Address Pools, page 6-1

Inherit Profiles for Non-IMS Adjacencies

Inherit Profiles for Non-IMS Adjacencies, page 10-1

SIP Configuration

Cisco Unified Border Element (SP Edition) Registration Features, page 15-1:

–SIP Fast Registration

–SoftSwitch Shielding

–Registration Monitoring

–Aggregate Registration

–Provisioned Delegate Registration

–Contact Username Passthrough

–Support for Supported Path Under REGISTER Request

SIP Profiles on Cisco Unified Border Element (SP Edition), page 16-1:

–Method Profiles

–Response Code Mapping

–Header Profiles

–Provisional Response Filtering

–Parameter Profiles

SIP Configuration (continued)

SIP Profiles on Cisco Unified Border Element (SP Edition), page 16-1(continued):

–Ability to Insert Firewall Parameter in SIP Contact Header

–Example—Stripping P-Called-Party-Identity support

SIP Tel URI Support, page 22-1

SIP Timer, page 23-1

SIP 3xx Redirect Responses, page 25-1

SIP Call Hold, page 26-1

SIP Call Transfer, page 27-1

SIP Outbound Authentication, page 28-1

SIP Inbound Authentication, page 29-1

SIP Configuration Flexibility, page 30-1:

–OPTIONS Support

–Rewriting From/To Header on Non-Register Requests

–Auto-detecting NAT

–Routing on wildcard Domains

Early Media, page 32-1

Late-to-Early Media Interworking, page 31-1

–Customizable Offer for Late-to-Early Media Interworking

P-CSCF Support, page 36-1

–Information About HTTP Digest Authentication Using AKA

Integration of Resource Management and SIP, page 39-1

IBCF Processing Support, page 40-1

Configuring SIP SDP Attribute Passthrough, page 43-1

SIP Renegotiation, page 41-1:

–Delta Renegotiation

–Support Renegotiated Call Over NAT

SDP Bandwidth Field Features

–Option to Use CODEC Instead of Bandwidth-Field for Media Bandwidth Allocation

–Bandwidth Field Interworking

SIP Instant Messaging

SIP IP-FQDN URI Translation

Interoperability for SIP INVITE Authentication

100rel Interworking Support

SIP Configuration (continued)

Appendix D: SIP Compliance and Interoperability

H.323 Support

H.323 Support Some of the features are the following:

–H.323 Video Codec Support

–H.323 Slow Start to H.323 Fast Start Interop

–Codec Mappings

–DTMF Interworking

–Transcoding

–T.38 Fax Relay

–H.245 Address in Call Proceeding

–Multiple TCP for H.323

H.323 to SIP Interworking

–H.323 to SIP Support for Emergency Calls

–H.323 Slow Start Calls to SIP Calls

–H.323 to SIP Cause Code Mapping

–Cisco Unified Border Element (SP Edition) supports interworking of upstream SIP endpoints calling to downstream H.323 Fast Start endpoints. This support includes support for Early Media.

–H.323 Fast Start Calls to SIP Calls

–SIP to H.323 Interworking for Basic Call Hold

"H.323 Call Routing Features" section on page 12-21

Configuring Policies

Implementing Cisco Unified Border Element (SP Edition) Policies, page 12-1:

–Number Analysis Policies—Number Validation, Number Categorization

–Routing Tables—Number Manipulation, Hunting, Destination Address Table, Category Table, Least Cost Table, Time-Based Tables

–Call Admission Control—Policy Set and Limit Tables

–CAC Rate Limiting

–Subscriber Policy support

–H.323 Call Routing Features

–Configuring H.323 MultiARQ Hunting

–Regular Expression Based Routing

–Configuring Trunk-Group ID Tables

–Regular expression matching performed on SIP headers

–Media Line Removal

–Example—P-KT-UE-IP Header Support

Implementing QoS (Marking)

Implementing QoS (Marking), page 17-1:

–Configuring QoS Profiles

–Choosing a QoS Profile Using CAC

Monitoring

Call Duration Monitoring

Signaling Congestion Handling

Codec Handling

Codec Handling, page 18-1

Implementing Transcoding

Implementing SBC Transcoding

–Support for MGX 8880 Media Gateway

Fax Support

Fax Support, page 7-1

–G.711 passthrough support for SIP and H.323 interworking calls

–T.38 fax support for H.323 to H.323 and SIP to H.323 interworking calls.

–Fax Upspeed Support

IP Realm Support

IP Realm Support

Security

Implementing Firewall Traversal and NAT, page 13-1

Secure Media and SRTP Passthrough, page 14-1

DoS Prevention and Dynamic Blacklisting, page 33-1

SIP Over TLS, page 9-20

Implementing Multi-VRF

Implementing Multi-VRF on Cisco Unified Border Element (SP Edition), page 8-1

Billing

Implementing Billing on Cisco Unified Border Element (SP Edition), page 11-1:

–Integrated Billing System

–Configuring Multiple RADIUS Servers

–Support for Local Cache

–Granular Timestamp Support

Appendix B: Additional Information about Billing Support, page B-1

Redundancy—High Availability

Cisco Unified Border Element (SP Edition) Redundancy—High Availability Support, page 5-1

DTMF Interworking

Implementing Interworking DTMF, page 4-1:

–SIP INFO

–DTMF Relay Using SIP Notify Messages

Management and Operations

Implementing SNMP, page 47-1

Unexpected Source Address Alerting, page 3-1

Tracking Policy Failure Statistics, page 24-1

Appendix C: Syslog Capabilities, page C-1 and Internal Log Levels

Supported MIBs

The following MIBs are supported Cisco IOS XE Release 2.4 and later for the SBC on the Cisco ASR 1000 Series Router:

•CISCO-SESSION-BORDER-CONTROLLER-EVENT-MIB

•CISCO-SESSION-BORDER-CONTROLLER-CALL-STATS-MIB

For more information about MIB support on a Cisco ASR 1000 Series Routers, refer to the Cisco ASR 1000 Series Aggregation Services Routers MIB Specifications Guide at:

http://www.cisco.com/en/US/docs/routers/asr1000/mib/guide/asr1kmib.html

To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at:

http://tools.cisco.com/ITDIT/MIBS/servlet/index

If Cisco MIB Locator does not support the MIB information that you need, you can also obtain a list of supported MIBs and download MIBs from the Cisco MIBs page at:

http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml

To access Cisco MIB Locator, you must have an account on Cisco.com. If you have forgotten or lost your account information, send a blank e-mail to cco-locksmith@cisco.com. An automatic check will verify that your e-mail address is registered with Cisco.com. If the check is successful, account details with a new random password will be e-mailed to you. Qualified users can establish an account on Cisco.com by following the directions found at:

http://www.cisco.com/register