System information

ManualsBrandsADTRAN ManualsComputer equipment6310

Abstract

In 2008, EtherSpeak certified the SureTrunk™ for ShoreTel connection method to enable an innovative

“native” SIP connectivity option for ShoreTel. SIP Trunking provides the users of ShoreTel a value-

aligned alternative method for public telephone network by-pass. These connection options are enabled

when a ShoreTel customer elects to use a SIP trunking provider like EtherSpeak (using the Session

Initiation Protocol (SIP)) for communications beyond the customer‟s IP network edge.

In the current version of EtherSpeak‟s SureTrunk™ for ShoreTel offering, EtherSpeak now provides the

ShoreTel administrator numerous options for connectivity of the SureTrunk™ for ShoreTel service – to

virtually any version of the ShoreTel system (this application note covers only ShoreTel versions 9.x

through versions 11.x).

In addition, EtherSpeak now provides options for enhancing security and quality of SIP by providing new

Quality of Service (QoS) / Class of Service (COS) guarantees by broadening the EtherSpeak solution to

include MPLS cross-connections to most Tier-One carrier data networks. This evolution is an

improvement to how the service may be delivered, and as a result, provides the ShoreTel Administrator

options for leveraging EtherSpeak SIP with seamless inter-connects to carrier networks in an

unprecedented way. New carrier supported MPLS cross-connects are available currently with AT&T /

ACC Business, Level 3 Communications, Qwest Communications, Windstream, Verizon Business and

others. Please speak with EtherSpeak sales to verify the availability of connecting to your carrier‟s

network.

They include a wide array of private wide-area-network (WAN) options (MPLS T1‟s), metro-Ethernet

connectivity, Asynchronous Transfer Mode (ATM) and whole range of quality public network broadband

and most recently, Wireless Wide Area Network (WWAN) options (including WAN (802.11n or WiMax).

In two short years, EtherSpeak SIP is steadily moving to become the de-facto standard for connecting

customer-premise based IP PBXs to carrier networks. With these options taking shape, it is an exciting

time for ShoreTel and SIP. Although SIP connectivity is a “newer” ShoreTel connection method, it is

typically regarded as less expensive, increasingly reliable, and the key driver for reducing customer

monthly recurring costs when compared to “legacy” Public Switched Telephone Network (PSTN)

connections. SIP is replacing Plain-Old-Telephone-Service (POTS), Basic Rate Interface (BRI), Primary

Rate Interface (PRI) or T1 / E1 trunk connections. This application note provides a guide for you in

selecting and implementing an EtherSpeak SureTrunk™ SIP connectivity option that is right for your

customer. We will help you do this by providing an understanding of the three ShoreTel Certified

methods to connect a ShoreGear system to EtherSpeak as a Communications-as-a-Service (CaaS)

provider.

1. Connecting natively to EtherSpeak over an single existing Internet connection

2. Connecting natively to EtherSpeak over a redundant Internet connection

3. Connecting natively to EtherSpeak over a private network connection

This application note is for ShoreTel customers who would like encrypted (utilizing an IPSEC VPN) SIP

trunking via a PRI handoff from the ShoreTel system.

Application Diagrams of the product scenarios tested with the ShoreTel ShoreGear switch appear in

Figure A below.

I n n o v a t i o n

N e t w o r k A p p N o t e

TPP: 10347

Date: September, 2011

Product: ShoreTel |EtherSpeak with Adtran

System version: ShoreTel 11.x

Summary of content (40 pages)

PAGE 1
I n n o v a t i o n N e t w o r k A p p N o t e TPP: 10347 Date: September, 2011 Product: ShoreTel |EtherSpeak with Adtran System version: ShoreTel 11.x Abstract In 2008, EtherSpeak certified the SureTrunk™ for ShoreTel connection method to enable an innovative “native” SIP connectivity option for ShoreTel. SIP Trunking provides the users of ShoreTel a valuealigned alternative method for public telephone network by-pass.
PAGE 2
Figure A: ShoreTel’s ShoreGear, Adtran’s NetVanta 6310 connected with EtherSpeak Table of Contents Overview............................................................... 3 Features and Benefits............................................ 3 Requirements, Certification and Limitations ..............4 Problem Statement ...................................................4 Solution .....................................................................4 EtherSpeak Overview and Contact ......................
PAGE 3
Overview This document provides details for connecting the ShoreTel system through the ADTRAN NetVanta® series of routing, switching and IP gateway products to EtherSpeak, for SIP Trunking, to enable audio communications. The connection to the ShoreTel system will be a T1 PRI from the NetVanta 6310 product. The document focuses on the configuration procedures needed to set up these systems to interoperate.
PAGE 4
o Web-based configuration Graphical User Interface (GUI), monitoring and remote management o Industry-leading warranty and customer support and services o The widest variety of standards-based , ShoreTel interoperable business networking infrastructure o Provide ShoreTel PBX with a PRI interface, thus eliminating the feature limitations that ShoreTel has with SIP trunking Requirements, Certification and Limitations Problem Statement  If ShoreTel customers wish to connect to inbound or outbound SIP
PAGE 5
A VPN is required for connection of the original SureTrunk™ Native service option and the new SureTrunk™ PRI service options. Either of EtherSpeak's solutions require a VPN tunnel with access from the customer's ShoreTel switch (where trunks are configured) to a virtual IP assigned by EtherSpeak to that customer's ShoreTel SIP switch (or PRI switch). Therefore, the customer firewall device should support industry standard IPSec encryption with availability of one-tunnel VPN license.
PAGE 6
ADTRAN Product Information Product Description The NetVanta 6310 Modular IP Business Gateway is designed for use in integrated IP voice and data service offering to small-to-medium sized businesses, worldwide. This powerful solution combines the robust routing and voice features of ADTRAN's industry-leading NetVanta 900e Series of IP Business Gateways into a modular, multi-function chassis.
PAGE 7
Version Support The ADTRAN Products detailed in this application note are certified with the following versions of the ShoreTel system, listed below. Adtran NetVanta 6310 NV6300A-A4-08-00-E.biz ShoreTel Release 9.x 10.x 11.
PAGE 8
1.8 Incomplete Inbound Calls Verify proper call progress tones are provided and proper call teardown for incomplete inbound calls. Pass Note 1: The NetVanta system sends a 503 (Service Unavailable) message to EtherSpeak, resulting in system message: “The number you have dialed is not in service”. 2.0 Media and DTMF Support ID 2.1 Name Media Support – ShoreTel Phone to NetVanta 2.2 Media Support – SIP Reference to NetVanta 2.3 Codec Negotiation 2.4 DTMF Transmission 2.5 Auto Attendant Menu 2.
PAGE 9
3.3 Post Dial Delay services through period of heavy outbound and inbound load. Verify that post dial delay is within acceptable limits. Pass 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 10
4.0 Enhanced Services and Features ID Name 4.1 Caller ID Name and Number – Inbound 4.2 Caller ID Name and Number – Outbound 4.3 Hold 4.4 Call Forward 4.5 Call Transfer – Blind 4.6 Call Transfer – Consultative 4.7 Conference – ad hoc 4.8 Inbound DID / DNIS 4.9 Outbound 911 4.10 Operator Assisted 4.11 Inbound / Outbound call with Blocked Caller ID 4.12 Inbound call to a Hunt Group 4.13 Inbound call to a Workgroup 4.14 Inbound call to DNIS / DID and leave a voice mail message 4.
PAGE 11
4.16 Call Forward – Always 4.17 Inbound / Outbound Fax calls 4.18 ShoreTel Converged Conferencing Server 4.19 Inbound call to Bridged Call Appearance (BCA) extension 4.20 Inbound call to a Group Pickup extension Verify that inbound calls are immediately forwarded to a user‟s external destination. Verify that inbound / outbound fax calls complete successfully.
PAGE 12
Go to the “Inbound” parameters section and configure the “Number of Digits from CO” to 10. Configure all of the other trunk group parameters as necessary. Please refer to the ShoreTel Administration Guide for details on the configuration parameters. Once you‟ve modified the trunk group parameters as needed “Save” your changes.
PAGE 13
Go to the “Layer 3:” parameter section, configure the “Protocol Type” for “ISDN User” and the “Central Office Type” for “NI-2”. In the “Layer 1:” parameter section configure the “Clock Source” for “Slave”, the “Framing Format” for “ESF” and the “Line Code” for “B8ZS”.
PAGE 14
determine which channel is being utilized), then click on the “Fill Down” radio button. This action will automatically populate all of the remaining channels. Finally, be sure to “Save” all of the changes. This completes all the configuration modifications necessary on the ShoreTel system. Adtran Configuration To get started with the ADTRAN device configuration, refer to the Quick Start Guide and ADTRAN Operating System (AOS) and documentation CD included in the product box with each device.
PAGE 15
Switch(config-telnet0-4)#login Switch(config-telnet0-4)#password adtran Switch(config-telnet0-4)# Note: Telnet and Web access require a static IP address or DHCP configured IP address. If accessing from a different subnet, routing configuration will be required. Web User Interface Using your preferred Web browser navigate to the Adtran NetVanta product Web interface GUI, using the IP address configured earlier via the CRAFT port, using the following syntax: HTTP://10.10.10.
PAGE 16
We will only cover the parameters necessary to get the systems to interoperate. For other parameters please refer to Adtran s documentation. Physical Interface Configuration From the System Summary page scroll down to the Physical Interfaces summary page: Then select the available T1 0/1 interface you want to enable and configure, for connection to the ShoreGear T1. 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 17
This action brings up the Physical Interfaces page, in the “Configuration for “t1 0/1”” perform the following: 1. Define a “Description” for the interface (we chose ShoreTel_PRI_Handoff). 2. Click to the right of the “Enable” parameter to enable the interface, the box should now be checked. 3. Clocking will be discussed below. 4. Configure the “Framing” parameter to “ESF”. 5. Configure the “Coding” parameter to “B8ZS”. 6. Configure the “FDL” parameter to “AT&T”. 7. Click on the “Apply” radio button.
PAGE 18
You will need to add the DS0s for the PRI by performing the following: 1. For the “Connect To:” parameter select “PRI”. 2. For the “DS0 Range:” parameter select “1” to “24”. 3. Click on the “Add” radio button. This action brings up the “PRI Configuration” page: 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 19
1. The “Description:” defaults to “pri 1”, leave it at default as you will need this entry later on when defining the trunk account for ISDN. 2. Enable the PRI interface by clicking the box to the right of “Enabled:”. 3. Set the “Switch Type:” to “National ISDN 2” 4. Set the “Protocol Emulation:” to “Network”. 5. Set the “B-Channel Restart:” option to “enabled”. 6. Set the “Name Delivery:” parameter to “display”. 7. Set the “Digits Transferred:” parameter to “All”. 8. Click on the “Apply” radio button.
PAGE 20
Set the time to the appropriate time, or use a known good NTP server in your geography. You will get the message “Settings applied successfully”. Eth 0/2 Interface Configuration We will now configure the external / WAN Ethernet interface, this will be the interface that EtherSpeak will send calls to.
PAGE 21
1. Define a “Description:” for the label, we chose WAN SIP Interface. 2. Enable the interface by clicking to the right of “Enable:”, making sure that the box is checked. 3. Set the “Interface Mode:” to “IP routing”. 4. In the “IP Settings” area, be sure to configure the interface as appropriate, setting the “Address Type:”, “IP Address:”, “Subnet Mask:”, and “Dynamic DNS:”. 5. Click on the “Apply” radio button. 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.
PAGE 22
System Summary Connect all of the appropriate cables (a T1 crossover cable between the ShoreGear T1 and the NetVanta T1 interface and the appropriate Ethernet cables), then click on the “System Summary” link: 1. Verify that you don‟t have any warnings in the “System Information” section. 2. Verify that the “WAN Summary” section shows the T1 interface “Link” as “Up” and green. 3. Depending on your requirements – verify that Ethernet Interface 0/0 is disabled.
PAGE 23
1. The “Operational Status:” may be “Unavailable” after you apply ALL of the settings it will become “Available”. 2. Verify that the “Administrative Status:” is “Enabled”. 3. Click on the “Apply” radio button. You will get the message “Administrative status set successfully”. Scroll down to the “Edit SIP Trunk Section”: 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 24
The “Trunk ID:” will be auto assigned, but in general will be “T01”, the “Type:” should be “SIP”, if it is not “SIP then you added the “Trunk Group” incorrectly, be sure to add the “Type” as “SIP” above. Define a “Trunk Name:” this can be anything you choose, we set the name as “EtherSpeak_SureTrunk”. Scroll down to SIP Settings tab and add the IP of 172.26.1.90. This IP will be accessed over a VPN. 1.
PAGE 25
1. Define a “Trunk Name:” that is appropriate, we chose ShoreTel_PRI_Handoff. 2. Set the “Type:” to “ISDN”. 3. Click on the “Add” radio button. This action brings up the “Trunk Accounts > Txx” page which includes a “Trunk Status” section and “Edit Trunk” section. We‟ll begin with the “Trunk Status” section: 1. The “Operational Status:” may be “Unavailable ” after you apply ALL of the settings it will become “Available”. 2. Verify that the “Administrative Status:” is “Enabled”. 3.
PAGE 26
The “Trunk ID:” will be automatically assigned, if it s a new installation it will most likely be “T02. Verify that the “Type:” and “Supervision:” are set to “ISDN”, if they are not, then you added the incorrect “Type” for the “Trunk Account” above. The “Trunk Name:” will be what you defined when adding the trunk account, you may modify it here (if necessary). 1. Set the “Resource Selection:” to “Circular Hunt Descending”. 2.
PAGE 27
You will need to define two trunk groups, one for SIP and one for PRI, we will add SIP first. In the “Group Name:” section type SIP and click on the “Add” radio button. This action brings up the “Edit Trunk Group „SIP‟ ” page: 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 28
Verify that the “Resource Selection:” parameter is set to “Linear Hunt” (this is the default setting), then click on the “Add Members...” radio button, this action brings up the “Add Members to Trunk Group” popup window: Set the “Outbound Call Templates” parameters as needed and click on the “Apply” radio button. This action takes you back to the main “Trunk Group” page (Add / Modify / Delete Trunk Groups) and you will get the message “Settings applied successfully”. We will now add the PRI trunk group.
PAGE 29
Verify that the “Resource Selection:” parameter is set to “Circular Hunt Descending”. Click to the left of the “ISDN” trunk account (which was created earlier) to select the ISDN trunk account. Then click on the “Add Selected Trunks” radio button. This action takes you back to the “Edit Trunk Group „PRI „” page, but now you‟ll have the “ShoreTel” account listed in the “Trunk Group Members” section and you will get the message “Account(s) added successfully”.
PAGE 30
Set the “Codec Group” selection parameters as needed and click on the “Apply” radio button. Then click the Apply button at the bottom of the page. Configuration of Loopback Interface What differentiates this solution over previous methods for SIP connection is that this solution provides the highest level of security available for ShoreTel customers wanting to use SIP trunks with ShoreTel over the public Internet.
PAGE 31
4. The loopback interface is configured for a virtual private IP address to use for the IP SEC encryption To configure the loop back address, go to DATA / Loopback Interfaces. Then select enable (if not by default), select address to type “static” and then enter a unique private IP address. This IP has to be unique to EtherSpeak – and should also be unique from your LAN network of IP addresses.
PAGE 32
Once that is complete, you need to make sure the loop back is enabled to pass the SIP traffic to the PRI on the NetVanta. To do so, select the Public Interface, Eth 0/2. Once you select the Eth 0/2, scroll to the bottom until you see the Media Gateway setting. This setting instructs the NetVanta to bridge the SIP media packets (RTP) to the PRI interface on the NetVanta and then to the ShoreTel.
PAGE 33
We then click into “EtherSpeak” from the VPN Peers main screen and enter the VPN connection information including IKE information, IPSEC information and information regarding the two hosts that will connect the networks together to permit encrypted SIP communications. There are two main configuration components with establishing an IPSEC tunnel between two endpoints over the Internet. The first is IKE settings and the second is IPSEC settings.
PAGE 34
For the IPSEC settings, you need to specify the following: Perfect Forward Secrecy or PFS: Group 2 Reverse Route: check Enable Encryption Hash: ESP: AES 128bit / SHA1 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 35
You then must select the IKE attributes for connection “EtherSpeak”. Encryption / Hash: 3 DES / SHA1 Diffey Helman: Group 2 Lifetime: 288000 Click Apply 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 36
The next step is to identify which networks (or hosts in this case) are permitted to communicate on the VPN. The local network is the customer network / premise and the remote network is EtherSpeak‟s network. For Local Network: Loopback with a 255.255.255.255 or /32 subnet mask. Recall that the Loopback address is a virtual address that is only on this device and only necessary to enable the encrypted communications. Click Add. For the Destination (or remote) network setting, enter 172.26.1.
PAGE 37
Lastly, make sure VPN Interface Security Zone Public and Private are both enabled to permit VPN traffic. Click Apply and then click SAVE at the top of the screen to save your running config to memory. For the security zones, you have to define which traffic is permitted to speak over the VPN. To get to the settings for security zones, got to Firewall / Security Zones and click “Public”. Then click “Allow List SIP” to see the access control list in the NetVanta GUI.
PAGE 38
Make sure you permit access to the following: EtherSpeak Public VPN IP EtherSpeak‟s Session Border Controller public IP address EtherSpeak‟s Session Border Controller private IP address This information will be supplied by EtherSpeak with your order confirmation. 960 Stewart Drive Sunnyvale, CA 94085 USA Phone +1.408.331.3300 +1.877.80SHORE Fax +1.408.331.3333 www.ShoreTel.
PAGE 39
With this step completed, please make sure you click “SAVE” on the top of the NetVanta screen and you should have a working config. EtherSpeak engineers will be available to assist with this process and with your configuration. However, for a detailed explanation of how to configure the units along with frequently asked questions, please see configuration guides online at www.adtran.com or in the included “ADTRAN OS System Documentation” CD.
PAGE 40
training@adtran.com www.adtran.com/university Document and Software Copyrights Copyright © 2011 by ShoreTel, Inc., Sunnyvale, California, U.S.A. All rights reserved. Printed in the United States of America. Contents of this publication may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without prior written authorization of ShoreTel Communications, Inc. ShoreTel, Inc.