User`s manual
Table Of Contents
- Mediant 2000 & TP-1610 & TP-260/UNI SIP User’s Manual Version 5.0
- Table of Contents
- List of Figures
- List of Tables
- Notices
- 1. Overview
- 2. Physical Description
- 3. Installation
- 4. Getting Started
- 5. Web Management
- Computer Requirements
- Protection and Security Mechanisms
- Accessing the Embedded Web Server
- Getting Acquainted with the Web Interface
- Protocol Management
- Advanced Configuration
- Status & Diagnostic
- Software Update Menu
- Maintenance
- Logging Off the Embedded Web Server
- 6. Gateway's ini File Configuration
- Secured ini File
- Modifying an ini File
- The ini File Content
- The ini File Structure
- The ini File Example
- Networking Parameters
- System Parameters
- Web and Telnet Parameters
- Security Parameters
- RADIUS Parameters
- SNMP Parameters
- SIP Configuration Parameters
- Voice Mail Parameters
- ISDN and CAS Interworking-Related Parameters
- Number Manipulation and Routing Parameters
- E1/T1 Configuration Parameters
- Channel Parameters
- Configuration Files Parameters
- 7. Using BootP / DHCP
- 8. Telephony Capabilities
- Working with Supplementary Services
- Configuring the DTMF Transport Types
- Fax & Modem Transport Modes
- Event Notification using X-Detect Header
- ThroughPacket™
- Dynamic Jitter Buffer Operation
- Configuring the Gateway’s Alternative Routing (based on Conn
- Call Detail Report
- Supported RADIUS Attributes
- Trunk to Trunk Routing Example
- Proxy or Registrar Registration Example
- SIP Call Flow Example
- SIP Authentication Example
- 9. Networking Capabilities
- 10. Advanced PSTN Configuration
- 11. Advanced System Capabilities
- 12. Special Applications
- 13. Security
- 14. Diagnostics
- 15. SNMP-Based Management
- SNMP Standards and Objects
- Carrier Grade Alarm System
- Cold Start Trap
- Third-Party Performance Monitoring Measurements
- TrunkPack-VoP Series Supported MIBs
- Traps
- SNMP Interface Details
- SNMP Manager Backward Compatibility
- Dual Module Interface
- SNMP NAT Traversal
- SNMP Administrative State Control
- AudioCodes’ Element Management System
- 16. Configuration Files
- Appendix A. Selected Technical Specifications
- Appendix B. Supplied SIP Software Kit
- Appendix C. SIP Compliance Tables
- Appendix D. The BootP/TFTP Configuration Utility
- Appendix E. RTP/RTCP Payload Types and Port Allocation
- Appendix F. RTP Control Protocol Extended Reports (RTCP-XR)
- Appendix G. Accessory Programs and Tools
- Appendix H. Release Reason Mapping
- Appendix I. SNMP Traps
- Appendix J. Installation and Configuration of Apache HTTP Server
- Appendix K. Regulatory Information
SIP User's Manual 6. Gateway's ini File Configuration
Version 5.0 145 October 2006
6.9 Security Parameters
Table 6-4: Security Parameter (continues on pages 145 to 146)
ini File Field Name
Web Parameter Name
Valid Range and Description
EnableIPSec
[Enable IP Security]
Enables / disables the Secure Internet Protocol (IPSec) on the gateway.
0 = Disable (default).
1 = Enable.
EnableMediaSecurity
[Enable Media Security]
Enables or disables the Secure Real-Time Transport Protocol (SRTP).
0 = SRTP is disabled (default).
1 = SRTP is enabled.
Note 1: SRTP is available only if DSPVersionTemplateNumber = 0 or 2.
Note 2: Use of SRTP reduces the number of available channels.
TP-1610, Mediant 2000, TP-260:
Template 0, 200 channels are available (per TPM).
Template 2, 120 channels are available (per TPM).
MediaSecurityBehaviour
[Media Security Behavior]
Determines the gateway’s mode of operation when SRTP is used
(EnableMediaSecurity = 1).
0 (Prefer) = The gateway initiates encrypted calls. If negotiation of the cipher
suite fails, an unencrypted call is established. Incoming calls that don’t include
encryption information are accepted.
1 (Must) = The gateway initiates encrypted calls. If negotiation of the cipher suite
fails, the call is terminated. Incoming calls that don’t include encryption
information are rejected (default).
EnableSIPS
[Enable SIPS]
Enables secured SIP (SIPS) connections over multiple hops.
0 = Disabled (default).
1 = Enabled.
When SIPTransportType = 2 (TLS) and EnableSIPS is disabled, TLS is used for
the next network hop only.
When SIPTransportType = 2 (TLS) or 1 (TCP) and EnableSIPS is enabled, TLS
is used through the entire connection (over multiple hops).
Note: If SIPS is enabled and SIPTransportType = UDP, the connection fails.
TLSLocalSIPPort
[SIP TLS Local Port]
Local TLS port used to receive SIP messages.
The default value is 5061.
Note: The value of ‘TLSLocalSIPPort’ must be different to the value of
‘TCPLocalSIPPort’.
SIPSRequireClientCertificat
e
0 = The gateway doesn’t require client certificate (default).
1 = The gateway (when acting as a server for the TLS connection) requires
reception of client certificate to establish the TLS connection.
Note: The SIPS certificate files can be changed using the parameters
‘HTTPSCertFileName’ and ‘HTTPSRootFileName’.
Secure Hypertext Transport Protocol (HTTPS) Parameters
HTTPSOnly
[Secured Web Connection]
Determines the protocol types used to access the Embedded Web Server.
0 = HTTP and HTTPS (default).
1 = HTTPS only (unencrypted HTTP packets are blocked).
HTTPSPort
Determine the local Secured HTTPS port of the device.
The valid range is 1 to 65535 (other restrictions may apply within this range).
The default port is 443.
WebAuthMode
[HTTP Authentication Mode]
Determines the authentication mode for the Embedded Web Server.
0 = Basic authentication (clear text) is used (default).
1 = Digest authentication (MD5) is used.
2 = Digest authentication (MD5) is used for HTTP, and basic authentication is
used for HTTPS.
Note that when RADIUS login is enabled (WebRADIUSLogin = 1), basic
authentication is forced.