Session Border Controller
Security for Asterisk
A Session Border Controller(SBC) is used to control VoIP signaling and media streams. SBC is responsible for setting up, conducting, and tearing down calls. SBC allows owners to control the types of call that can be placed through the networks and also overcome some of the problems caused by firewalls and NAT for VoIP calls. A common location for a stand-alone SBC is a connection point, called a border, between a private local area network (LAN) and the Internet. SBC polices real-time voice traffic between IP network borders ensuring your private network is robustly secure and fully manageable.
- SBC is enabled with DPI Packet Inspection on VOIP traffic, supporting the Signatures for Key Malwares/Vulnerabilities observed in SIP Deployments like Extensions Enumeration DoS and Password Cracking. Supporting Open Source PBXs like Asterisk, FreeSwitch, TrixBox.
- Handles the SIP-NAT issues observed in the common VOIP deployments.
- Topology-hiding function is to prevent customers or other service providers from learning details about how the internal network is configured, or how calls being placed through the SBC are routed.
- Eliminates bad VoIP signaling and media protocol at the network boundary.
- Built-in firewall which can controls IP Addresses/Port based Filtering, DOS/DDOS Attacks, IP Blacklist & NAT. It opens pinhole in the firewall to allow VoIP signaling and media to pass through.
- Media bridging, which may include Voice over IP and Fax over IP.
- Roaming Extension for Internal SIP PBX.
- Support for SIP Outbound/Inbound Trunk and policies to route the calls.
- DTMF Support for RFC2833/INBAND/SIP INFO
- Can handle simultaneous calls from 10 to 60 channels (Including Media Transcoding and Encryption)
- Easy GUI Configuration and call statistics.
- Transcoding - SBCs can also allow VoIP calls to be set up between two phones by transcoding of the media stream, when different codecs are in use.
- TLS/SRTP - support for Signaling and Media encryption.
- Policy-based call routing, including crankback of call setup.
|No of simultaneous calls
||30 (60 channels) maximum
|Basic firewall capabilities
|DPI on SIP Traffic
|No. of VoIP Signatures
||G.722,G.729,G.711 A-Law, G.711 U-Law, G.723, G.726
||Local log viewer, Syslog
||HTTPS GUI, SNMP
||Cavium Octeon+, 700 MHz Dual Core
||1 Wan Gbps port & 2 LAN Gbps ports
|Serial Port Connectivity