R2511-HP MSR Router Series Voice Configuration Guide(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router

181

182

183

184

185

186

187

188

189

190

171

# Create a PKI entity aaa, enter its view, and then configure the common name of the entity as

RouterA.

[RouterA] pki entity aaa

[RouterA-pki-entity-aaa] common-name RouterA

[RouterA-pki-entity-aaa] quit

# Create a PKI domain voice, enter its view, and then specify the trusted CA as voice.

[RouterA] pki domain voice

[RouterA-pki-domain-voice] ca identifier voice

# Specify the URL of the registrar in the format of http://host:port/Issuing Jurisdiction ID, where

Issuing Jurisdiction ID is a hexadecimal character string generated on the CA server. Then, specify

the authority for certificate request as CA, and the entity for certificate request as aaa.

[RouterA-pki-domain-voice] certificate request url

http://192.168.0.88:446/bd0683e5a369eb4edbb4ef502eaca6ec42d24e97

[RouterA-pki-domain-voice] certificate request from ca

[RouterA-pki-domain-voice] certificate request entity aaa

[RouterA-pki-domain-voice] quit

# Create local RSA key pairs.

[RouterA] public-key local create rsa

# Retrieve the CA certificate from the certificate issuing server.

[RouterA] pki retrieval-certificate ca domain voice

# Request a local certificate from the CA.

[RouterA] pki request-certificate domain voice

# Create an SSL server policy named server and configure the policy to use PKI domain voice.

[RouterA] ssl server-policy server

[RouterA-ssl-server-policy-server] pki-domain voice

# Create an SSL client policy named client and configure the policy to use PKI domain voice.

[RouterA] ssl client-policy client

[RouterA-ssl-client-policy-server] pki-domain voice

# Reference the created SSL server and client policies for SIP, and then specify TLS as the transport

layer protocol for both outgoing and incoming SIP calls.

[RouterA] voice-setup

[RouterA-voice] sip

[RouterA-voice-sip] crypto ssl-server-policy server

[RouterA-voice-sip] crypto ssl-client-policy client

[RouterA-voice-sip] listen transport tls

[RouterA-voice-sip] transport tls

[RouterA-voice-sip] quit

# Configure the voice entities.

[RouterA-voice] dial-program

[RouterA-voice-dial] entity 2222 voip

[RouterA-voice-dial-entity2222] address sip ip 192.168.2.2 port 5061

[RouterA-voice-dial-entity2222] match-template 2222

[RouterA-voice-dial-entity2222] quit

[RouterA-voice-dial] entity 1111 pots

[RouterA-voice-dial-entity1111] line 1/0

[RouterA-voice-dial-entity1111] match-template 1111

[RouterA-voice-dial-entity1111] quit