March 1st, 2018 – Edgewater Networks, a market leader in enabling IP-based voice, video and data services, introduced their latest release: the EdgeMarc 2900e PoE Intelligent Edge.

The 2900e PoE: All-in-one Session Border Controller and PoE
This is a powerful yet simple appliance that integrates the session border controller functionality with 12 fully-managed Power over Ethernet ports.

The 2900s PoE device can be combined with the EdgeView Service Control Center for remote monitoring and management. It is also designed to be compatible with Cloud2Edge Complete, the subscription-based model of Network Edge Orchestration.
Take a peek at some of the benefits:

  • Single device solution makes installations easier and reduces the number of SKUs to manage
  • Single user interface for configuration of both SCB and PoE functions
  • Fully managed design allowing for VLANs and advanced management
  • Type 1 PoE device, providing a full 15.4 watts per port
  • Dual 1Gb/s Ethernet or optical fiber connections backing today’s bandwidth speeds

Download the datasheet

We co-hosted a Security webinar Part I with Sangoma this Tuesday and our audience had a lot of questions regarding SBCs, VPN, dynamic IPs, PBX and other security issues. We would like to share the Q&A session with all of you who may have the same questions!

Also, don’t forget the Security Webinar Part II is coming on February 6th! Register early to save your seat!

1. For the session border controller if we have any IPS static do we need one? Then we wouldn’t have ports open to the entire world but only from specific?

Answer: This will protect you as long as your users do not have infected devices at that IP address. Putting a SBC into the equation ensures that only the traffic you want passes onto your network.

2. What if you use a VPN? Do you still need a SBC?

Answer: VPN will secure the device (in this case the IP phone), but you are still opening up ports for your SIP provider. You must also consider the fact that your user may connect an infected PC or Laptop to that phone, which would now have a secure connection directly to your LAN. The same thing applies if your users are using a softphone over VPN using an infected device.

3. If we use remote phones and they are on dynamic IP’s or travel then we should be using an SBC?

Answer: Absolutely.

4. I would imagine VPN from endpoints to PBX, like OpenVPN with the Sysadmin Pro module. So if I have FreePBX, Sysadmin Pro module with Sangoma phones running OpenVPN, what does adding the SBC get me? SIP trunks, like Bandwidth or Flowroute. The PBX is hosted.

Answer: VPN will secure the device (in this case the IP phone), but you are still opening up ports for your SIP provider. You must also consider the fact that your user may connect an infected PC or Laptop to that phone, which would now have a secure connection directly to your LAN. The same thing applies if your users are using a softphone over VPN using an infected device.

5. What if our phone system is cloud hosted. Do we need an SBC?

Answer: Yes. Since you would need to open ports on your firewall to allow SIP traffic thru to your phones.

6. If you are using HA do you need 2 SBCs?

Answer: Since the two PBXs are on the same network, you would only need 1 SBC.

7. What if the SBC fails in the field.  Do you need a hot-swappable or can you run the system without the SBC?

Answer: A system will run without it and hopefully your backup security strategies will protect you until you get another SBC deployed. If security is your number 1 priority you should have a backup if your budget allows for it.

More questions? Utilize the comment box below to ask our VoIP Experts or simply raise your phone to contact Brian Hyrek at bhyrek@voipsupply.com or 716-531-4318!

how-does-a-sbc-work
A Session Border Controller (SBC) is a powerful back-to-back user agent device that sits at a point of demarcation for SMB and Enterprise businesses to provide services such as call control, security, interoperability and voice optimization. Let’s take a closer look at how a Session Border Controller works to optimize your VoIP performance!

Generally, the main duties of an SBC can be separated into four sections: Topology Hiding, IP Addresses Translation, Encryption and Transcoding, and Classification.

Topology Hiding

An SBC locates in the middle of the call path between a service provider and an IP-PBX. When a call is generated and arrives at an SBC from the PBX, the SBC filters out any sensitive information, so no outside intruders can exploit this information for hacking the enterprise VoIP network. This is called Topology Hiding.

IP Addresses Translation

An SBC also translates local IP addresses of the callers to the WAN IP address of the SBC and performs protocol normalization, a process that an SBC manipulates the call message to adhere to the service provider’s protocol implementation including possible number manipulation.

how-does-sbc-workEncryption and Transcoding

Some SBCs also encrypt calls and perform transcoding when necessary. If an enterprise is connected to multiple branches and service providers, an SBC will decide where to route the calls to. It makes routing decisions based on multiple criteria: reachability, call cost optimization and path with the best quality.

Classification

So far, we have only talked about the outgoing calls. What about the incoming calls? It basically follows the same steps as for outgoing calls but with one extra layer of examination which is called classification, a process of careful inspection on the incoming calls to identify intruders and hackers.

More questions? Call 1-800-398-8647 to ask one of our VoIP consultants!

Are you on board and benefiting from VoIP? Greate! But do you have protections for your VoIP network? You may have heard that, like other Internet-based systems, VoIP networks are also vulnerable to IP-based attacks such as denial-of-service (DoS) attacks and identity/information theft. Luckily, with a proper security measure, you will be able to effectively block out the unwanted intruders!

Patton’s SmartNode SIP Session Border Controllers enable Unified Communications for SIP-to-SIP environments and contain built-in security features and Stateful Firewall. They secure the LAN networks from fraud strikes on the Internet. Even better, Patton products come with free post-sales technical support and a 1-year warranty. All products are made in USA. Let’s check out their four most popular SN selections!

patton-comparison-chart

The SN5200

The SN5200 Enterprise Session Border Router is designed to ensure security and a high level of efficiency in the VoIP network. Connecting the Enterprise’s LAN to an Internet Telephony Service Provider (ITSP), the SN5200 creates a single conduit for multimedia components including voice, video, and data. This solution also includes SIP-aware NAT and access control list ACLs for maintaining secure communications when SIP traffic crosses the Enterprise edge. See more features:

  • 1 10/100BaseT WAN port, 4 10/100 LAN Ethernet Portssn5200
  • Complete IP Access Router
  • Quality of Service Voice priority
  • DownStreamQoS
  • Traffic management, shaping and policing
  • Web/HTTP, CLI with local console and remote Telnet access
  • Secure auto-provisioning for both firmware and unit/subscriber configuration
  • Built-in diagnostic tools (trace, debug, call generator)

The SN5300

Consider the SN5300 if you are searching for a powerful solution to create a reliable VoIP and data network. This solution is a CPE-based Enterprise Session Border Router with four SIP sessions and it can be upgraded to 256 SIP sessions when needed. The SN5300 is designed to give users greater network flexibility and assist in easier deploying, troubleshooting, logging, and security. Check out more features:

  • IP Routing —Policy Based Routing, Protocol Based Routing, Packet Length Routing, Packet Filteringsn5300
  • QoS and Security—Deliver secure, toll-quality voice communications routing
  • SIP Registrar – License is included in ALL ESBR products.
  • NO Transcoding
  • Ethernet— Intelligent 4 port Fast Ethernet BaseT 10/100 (routable and switchable)
  • WAN Access—Support for G.SHDSL EFM/ATM 4-wire and 8-wire interfaces
  • Trinity OS—Patton’s Linux based multi-service OS with call control and signaling features

The SN5540/5541

If you are looking for an all-in-one solution for your VoIP system, you won’t want to miss the SmartNode 5541 Series! This solution acts as a VoIP gateway, eSBC, access router and QoS CPE all in one device. It supports up to 8 simultaneous calls for a new standard in toll-bypass, remote/branch office connectivity, and enhanced All-IP carrier services. The SN5541 also undertakes network assessment and monitoring at the customer premise to prevent, reduce and resolve network issues. A truly cost-effective solution! Find more highlighted features:

  • Embedded Packet Smart Agent for network monitoring and assessment 24×7sn5540
  • Secure zero-touch provisioning (HTTPS) for ease of use
  • WebWizard, HTTPS zero touch provisioning, SNMP, command line interface
  • SIPv2, SIPv2 over TLS, ISDN, T.38, G.722 HD Voice, RTP Security with SRTP, fax and modem bypass, DTMF relay.
  • Interoperable for voice and T.38 fax with leading SIP service providers, softswitch vendors, and major IP-PBX manufacturers

Access to SN5541 Datasheet

The SN5570

As is consistent with all Patton SmartNode products, the SN5570 Series are state of the art ESBRs and also provides policy-based IP routing. This Patton ESBR accommodates 1 E1/T1/PRI, up to 30 VoIP calls or 15 SIP Sessions (SIP B2B calls). It is also upgradable, contains SIP-TLS, SRTP and can support 16 Transcoded Calls, 2x Gig Ethernet and contain an external UI power source. Learn more features:

  • Supports 30 VoIP Callssn5570
  • Full VoIP Protocol Support
  • Full Telephony Features
  • Outstanding Interoperability
  • Class A Compliance
  • High Precision Clock (HP) Option
  • Supported by SmartNode Redirection Service

Now, take a look at the comparison chart again to see the four products side by side!

See More Patton eSBCs

esbc

Cost saving is one of the main reasons for many businesses and enterprises to move to VoIP. For businesses that deploy SIP trunks, it may be tempting to cut corners by using lower cost network elements, or by omitting some devices they considered “non-essential” but nice-to-have.

One question we often hear is “Why can’t I just connect my IP Phone or IP PBX to a SIP trunk?” Well, to answer that question, let’s take a look at the risks you are exposed to without an extra protection.

Issue #1 – Security

You may encounter unexpected high phone bills. According to the Communications Fraud Control Association (CFCA) report, the Internet-based toll fraud cost small business victims $6.08 billion in 2015. Hacking, spamming, and tampering are difficult to prevent without an extra layer of protection.

Failing to encrypt the SIP signaling data can expose such information as user credentials, phone numbers, IP addresses and aspects of the company network topology to malicious intruders.

Solution:

Both SIP signaling information and media content (digitized voice) must be protected (hidden) by encryption.

A high-quality eSBC like Patton’s SN4451 Series will provide a rich set of security features that protect the provider WAN network and the customer LAN from each other, as well as from external security vulnerabilities.

Issue # 2 – Reliability 

IP telephony operates over a complicated computer-based network and it can have network failure and downtime if it’s not protected. Such network failures can cause gaps in a company’s phone service resulting in disrupted communications and loss of business continuity.

Solution:

Patton’s SN4511 eSBCs provides a failover mechanism, and that also provides media gateway and IP routing functions, can deliver survivability for voice and data over a fallback connection to the local phone company (PSTN).

Issue #3 – Service Quality

Bad service quality is the worst. You could lose customers or subscribers because of the poor voice quality or unreliable service.

Solution:

Patton’s SN4451 eSBCs provide dual Quality of Service (QoS) mechanisms that include:

  • Bandwidth Reservation – minimum link capacity allocated for voice packets
  • Downstream QoS – throttling mechanisms that limit and slow down large downstream data bursts to prevent flooding the capacity of the link.

Issue #4 – Interoperability

Potential business customers have selected innumerable brands of (traditional or IP-based) PBXs and phones. How many can you realistically certify for guaranteed interoperability with your network elements, protocols, and services?

Solution:

Patton’s eSBCs provide legacy interfaces that IP-enable existing ISDN and POTS business phone systems helps businesses preserve the value and extend the useful life of their capital investments in traditional telephony solutions. While taking advantage of the cost-saving and operational benefits of IP telephony, such solutions enable companies to migrate to converged communications at the pace they deem most comfortable and cost-effective.

Download Patton’s full white paper here.

More Benefits from Patton’s SN5541 eSBCs

Patton’s SN5541 Series acts as VoIP gateway, eSBC, access router and QoS CPE all in one device. It also monitors, prevents, reduces, and resolves network and voice quality problems. Learn more here!

sn5541

  • Up to 8 FXS interfaces
  • Advanced Local Call Switching
  • Network Monitoring
  • Auto-Provisioning
  • Easy Management & Provisioning
  • Full VoIP protocol support
  • Made in the USA
  • Free Software Upgrades

Questions about VoIP devices and services are regularly submitted to VoIPSupply.com through a technical support ticket or via the “Ask The Expert” tab on our product pages.

We respond to these requests directly but more often than not, this Q & A would be helpful for lots of other folks.

Below are your VoIP questions answered – Real questions from real people just like you.

Q: What is the default log in and password out of the box of the EdgeMarc 250W [Model] #250W-100-0002?

EdgeMarc 250W
EdgeMarc 250W Enterprise Session Border Controller Handles, and Protects, up to 10 Concurrent Calls

A:   The EdgeMarc 250W is an Enterprise Session Border Controller (SBC) that handles up to 10 concurrent calls, protecting them from malicious attacks. This SBC is designed for small and medium sized offices.

The default login is simply:

  • User Name = root
  • Password = default

Here’s a helpful screenshot from the EdgeMarc 250W Enterprise Session Border Controller Installation Guide:

EdgeMarc 250W
EdgeMarc 250W Default User Name and Password

Once you’ve programmed your EdgeMarc device you’ll want to change your login credentials.

Our friends at Bandwidth alerted us of a potential problem with passwords being compromised. Read more here:

In that post there are instructions on how to tell if your password needs to be changed.

Q: I am wondering if this phone [snom 300 UC Edition] comes with the parts to mount it to the wall or if I need to get a separate wall mount kit?

snom 300 UC Edition
snom 300 UC VoIP Phone Qualified for Microsoft Lync

A:   The snom 300 UC Edition is a basic 2-line VoIP phone qualified for use with Microsoft Lync.

To answer your question, the snom 300 comes with a dual-purpose footstand that allows you to either prop the phone up on your desk, or mount it on the wall with the pre-drilled holes.

Here are two documents and a screenshot (below) that you should check out:

 

snom 300
snom 300 Wall Mount

 

Stay Tuned

Check back next time for more VoIP Q & A.

Thanks for your questions!