RADVision Scopia TIP Gateway Deployment Manual

Other manuals for Scopia TIP Gateway: Deployment Manual

Page of 77

Download

Print this page

Bookmark us

Deployment Guide

Version 8.0

For Solution 8.0

SCOPIA TIP Gateway

1 2 3 4 5 6 7 Next › »

Summary of Scopia TIP Gateway

Page 1
Deployment guide version 8.0 for solution 8.0 scopia tip gateway.
Page 2
© 2000-2012 radvision ltd. All intellectual property rights in this publication are owned by radvision ltd and are protected by united states copyright laws, other applicable copyright laws and international treaty provisions. Radvision ltd retains all rights not expressly granted. All product and c...
Page 3
1 about scopia tip gateway technical specifications................................................................................ 2 2 planning your tip gateway deployment planning your topology for the tip gateway ........................................................4 creating dial plans for ci...
Page 4
Attaching brackets to the scopia tip gateway.............................................. 15 marking the location of the device-fixing cage nuts........................................ 16 removing the cage nut screws................................................................. 17 mounting the d...
Page 5
Generating the certificate signing request for scopia management........................... 50 uploading scopia management certificates into scopia management......................... 53 generating the certificate signing request for the scopia tip gateway...................... 56 uploading certific...
Page 6
The scopia tip gateway allows organizations to connect cisco telepresence rooms directly to a scopia elite mcu conference and view all three screens of the cisco telepresence system. The tip gateway is used for making video calls from the scopia elite mcu to cisco telepresence rooms and vice versa. ...
Page 7
The main features of the tip gateway include: • tip protocol support cisco telepresence rooms can connect to a scopia elite mcu conference and enjoy a comprehensive experience including audio, video and content sharing. Scopia elite mcu provides video layouts that were designed specifically for tele...
Page 8
– humidity: 90% non-condensing at 35° – storage and transit temperature: -40°c to 70°c (-40°f to 158°f), ambient • physical dimensions: – size: 430mm (16.9”) width x 43mm (1.7”) height x 508mm (20”) depth – weight: 15kg (33lbs) maximum – 19-inch rack-mountable with flanges • interfaces – 2 x rj-45 g...
Page 9
Perform the procedures in this section to prepare the site and device for installation. • planning your topology for the tip gateway ............................................ Page 4 • creating dial plans for cisco telepresence ............................................... Page 5 • ports to open...
Page 10: Note
Figure 2-1 deploying the tip gateway in the enterprise creating dial plans for cisco telepresence all telepresence calls are made through the scopia elite mcu. Users of telepresence deployments do not need to choose a specific mcu. The powerful functionality of virtual rooms enables you to dial the ...
Page 11: Note
• by dialing through the ctms. For example, an endpoint would dial 227-5678, where the dial prefix '227' routes the call to the cisco telepresence and '5678' is the relevant service on the ctms as allocated by the cisco network administrator. Ports to open on the scopia tip gateway the scopia tip ga...
Page 12
Port range protocol destination functionality result of blocking port required 3336 xml (tcp) scopia management enables you to manage this gateway via the xml api cannot use the xml api to manage the gateway mandatory 3338 xml (tcp) scopia management, or any third-party configuration applications en...
Page 13
Perform the procedures in this section to prepare the site and device for installation. • checking site suitability .................................................................... Page 8 • unpacking the device ....................................................................... Page 8 • insp...
Page 14: Caution
Figure 3-1 this side up symbol caution the accessories kit is situated on top of the device inside the shipping box and can be damaged if the box is placed upside down. Pay attention to the this side up symbol on the shipping box to handle the box correctly at all times. Caution to prevent injury an...
Page 15: Note
Note before proceeding with the installation, verify that all of the ordered parts are present and in good condition. Keep a record of the parts and serial numbers. If any parts are missing or damaged, contact your sales representative. Verifying rack suitability there are some critical requirements...
Page 16
• avoid placing the device in an overly congested rack or directly next to another equipment rack. Otherwise, the heated exhaust air from other equipment can enter the inlet air vents and cause the device to overheat. • maintain a minimum clearance of 3 inches (7.62 cm) on the left and right of the ...
Page 18
Mount the device onto a 19” square-hole rack. These sections describe how to set up the device: • mounting the scopia tip gateway onto the rack using a shelf ...................... Page 13 • connecting cables to the device ......................................................... Page 19 • setting t...
Page 19: Note
Step 2 prepare masking tape or a felt-tip pen to mark the location of the device-fixing cage nuts. If the holes on the rack are marked with numbers, write down the numbers on a piece of paper. Step 3 if you choose to mount the shelf, see the manufacturer’s guidelines for mounting a shelf. When looki...
Page 20
Figure 4-2 accessories required for mounting attaching brackets to the scopia tip gateway the brackets serve to secure the device to the rack’s front posts. Procedure step 1 position the device on a flat, horizontal surface. Make sure the device front panel faces toward you. Step 2 unscrew the two p...
Page 21
Figure 4-3 removing the phillips screws on the side panel step 3 attach the brackets on each side of the device side panel with the phillips screws. See figure 4-4 on page 16 . Figure 4-4 aligning the bracket with the scopia tip gateway front panel marking the location of the device-fixing cage nuts...
Page 22
Procedure step 1 from inside the front-facing rack post, mark the location of the device-fixing cage nut measured at 0.75 inches (2 cm) above the shelf. See figure 4-5 on page 17 . Figure 4-5 marking the location of the device-fixing cage nut on the rack step 2 repeat this procedure for the other fr...
Page 23: Caution
Procedure step 1 rotate the bottom cage nut so that its wings are on the top and bottom sides of the cage nut. See figure 4-5 on page 17 . Step 2 compress the wings. From the back side of the post, insert first the wide wing, then the narrow wing into the marked square hole. Release the wings after ...
Page 24
Step 3 insert the two long rack screws provided with the product through the bracket holes into the cage nuts in the rack. Using the allen wrench tighten the screws to secure the device to the front posts. See figure 4-8 on page 19 . Figure 4-8 securing the scopia tip gateway to the rack connecting ...
Page 25: Note
Figure 4-9 rear panel of the device step 2 connect the other end of the power cable to the mains. Step 3 use a serial cable to connect a pc to the device's serial port. This connection is required for local configuration and maintenance. Note do not connect a screen or a keyboard to the device direc...
Page 26
Table 4-1 configuring the communication settings field name value baud rate 9600 data bits 8 parity none stop bits 1 flow control none step 5 press the on/off switch on the front side of the device (see figure 4-10 on page 21 ) to power on the device. Verify the power led is lit green. Figure 4-10 d...
Page 27: Note
• subnet mask if you are not using a subnet mask, press enter. • default router step 10 allow the unit to complete the reboot process. A new emulator session begins. Step 11 close the terminal emulator session. Step 12 connect a network cable to the left ethernet connector on the rear side of the de...
Page 28: Note
To configure your video network for cisco telepresence, you need to configure the following deployment components: scopia tip gateway, scopia management, and scopia elite mcu. You also need to confirm that the cucm, cisco's call manager, is properly configured for the scopia solution. Note only the ...
Page 29: Caution
Caution only the personnel that installed the cisco telepresence and the customer's network administrator should modify the cisco telepresence configuration. Procedure step 1 make sure the scopia management ip address and port number are configured in the sip trunk. A. Select the relevant trunk in t...
Page 30
Configuring ports on the scopia tip gateway this section provides instructions of how to configure the following ports and port ranges on the scopia tip gateway: • limiting tcp port range for h.245 on the scopia tip gateway ...................... Page 25 • configuring rtp/rtcp/srtp ports on the scop...
Page 31
Step 5 select advanced parameters settings. The advanced parameters dialog box appears (see figure 5-4 on page 25 ). Step 6 to set the base port for the h.245 control channel protocol, do the following: a. Clear the values before proceeding to the next step. B. Enter h245baseport in the command id f...
Page 32
Step 9 set the audio base port by doing the following: a. Enter the advcmdmapsetval command in the command field. B. Enter the mf.Udpbaseport parameter in the parameter field. C. Enter the port value in the value field. D. Select save. E. Enter the mapconfigcompleted command in the command field. F....
Page 33
Step 4 select the relevant gateway from the gateways list. Step 5 select the configure tab (see figure 5-4 on page 25 ). Step 6 select advanced parameters settings. The advanced parameters dialog box appears (see figure 5-4 on page 25 ). A. Select h323sigport from the command id list. B. Enter the p...
Page 34
Figure 5-5 adding a new video network device • to modify the basic attributes of the device, select the link of the device in the name column, and select the configure tab if present. Step 5 enter or modify the basic settings for your device, as described in table 5-1 . Scopia management then connec...
Page 35
Field name description model this field is only necessary when adding gatekeepers and gateways: • if adding a gatekeeper profile, select the gatekeeper's vendor and model from the list. • if adding a gateway profile, select the gateway type from the list. Registered to select the gatekeeper to which...
Page 36: Note
Figure 5-7 configuring the gateway step 5 configure the scopia gateway settings as described in table 5-2 on page 31 . Table 5-2 configuring settings for the scopia gateway field names description name you can modify the name that identifies the scopia gateway in scopia management. Secure xml connec...
Page 37
Field names description required gatekeeper the gatekeeper to which you want to register the scopia gateway. Current gatekeeper this (read-only) field displays the management ip address of the gatekeeper this scopia gateway is currently registered to. In most cases, this is the same gatekeeper selec...
Page 38
Step 7 allow scopia management to access the scopia gateway: a. Select the access tab. B. Enter the login name and password of the scopia gateway. The default username is admin and the default password is password. C. Select apply. Configuring cisco telepresence in scopia management for general info...
Page 39
Table 5-3 configuring the cucm settings field name description name enter a name to identify the cucm (sip server). This name is displayed in the list of sip servers. Ip address/ fqdn enter either the network name (fqdn) of the computer that you are using as the cucm (specify all domain levels), or ...
Page 40: Note
Note the ctms is considered as an endpoint in the scopia management setup. Procedure step 1 access the scopia management administrator portal. Step 2 select the endpoints tab. Step 3 select add > add manually. The add endpoint window appears. Step 4 select the cisco telepresence system in the type l...
Page 41: Note
Field name description prefix you must configure the prefix for each type of call: • for inbound calls, enter the ctms directory number. To locate the number, see “retrieving the ctms prefix for scopia management” on page 36 . • for outbound calls, enter the dial-in number for each service defined i...
Page 42: Note
Step 2 select system settings > route pattern. Step 3 write down the ctms directory number as you need it for configuring the ctms prefix in scopia management. For more information, see “adding the ctms to scopia management” on page 34 . Figure 5-9 locating the ctms directory number retrieving ctms ...
Page 43
B. Write down the relevant call-in numbers to the ctms meetings as you need them for configuring the ctms prefix in scopia management. For more information, see “adding the ctms to scopia management” on page 34 figure 5-11 the ctms static meetings page adding cisco telepresence systems (cts) in scop...
Page 44
Figure 5-12 cisco cts configuration screen step 5 configure your telepresence endpoint as described in this table. Table 5-5 configuring telepresence endpoints field name description name enter a name used to identify the endpoint. This is the name displayed in the list of endpoints. Description ent...
Page 45: Note
Step 9 if the endpoints used in your telepresence are defined in the ldap server, import the endpoints into scopia management, as described in the administrator guide for scopia management. Note even if you previously imported the endpoints from the ldap server, you must re- import the endpoints to ...
Page 46
Defining allowed bandwidth in the mcu make sure the bandwidth is configured to more than 1mbps, which is the value required for the cisco telepresence. A value under 1mbps causes the videoconference to disconnect. Procedure step 1 access the mcu administrator interface. Step 2 select configuration. ...
Page 48: Note
You can configure your video network, whether it is a scopia solution or a third party deployment, to support transport layer security (tls) for the sip signaling protocol. If you have the scopia management redundant solution, it is important to configure redundancy before proceeding with tls config...
Page 49: Note
Note managing certificates for communication between scopia management and other devices is done as follows: • scopia video gateway, radvision sip gateway, and scopia tip gateway certificates are managed from scopia management's administrator portal. • scopia desktop server certificates are configur...
Page 50
There are several types of tls connections: • standard tls, where all certificates are signed by the same ca. • unique cas, where each certificate is signed by a different ca. • unknown gateway ca, where the gateway’s certificate is signed by an unknown (untrusted) ca. • unknown scopia management ca...
Page 51
On the gateway side, upload the following certificates ( figure 6-1 on page 45 ): – a certificate identifying the gateway, signed by the same ca. This is sent to scopia management as part of the tls negotiation. – a copy of the root certificate verifying the ca’s identity, self-signed by the ca. Thi...
Page 52
– a root certificate verifying ca1’s identity, self-signed by trusted ca1. This is used by the gateway to verify the certificate sent by scopia management, which is signed by ca1. • unknown gateway ca if the ca of the gateway’s certificate is unknown, it cannot be trusted unless it comes with an int...
Page 53
– a root certificate from ca1 verifying ca1’s identity, self-signed by trusted ca1. This is used by the gateway to verify the certificate sent by scopia management, which is signed by ca1. • unknown scopia management ca when scopia management’s certificate is signed by a ca unknown to the gateway, y...
Page 54
– an intermediate certificate vouching for the trustworthiness of ca3, signed by trusted ca1. This is used to trust scopia management’s identity certificate, which is signed by ca3. – a root certificate from ca1 verifying ca1’s identity, self-signed by trusted ca1. This is used by the gateway to ver...
Page 55: Note
On the gateway side, the certificates to be uploaded are ( figure 6-4 on page 48 ): – a certificate identifying the gateway, signed by ca4, a ca unknown to scopia management. This is sent to scopia management as part of the tls negotiation. – an intermediate certificate vouching for the trustworthin...
Page 57: Note
Figure 6-7 certificate signing request step 6 enter your organization's details. Note • common name must be full name of the scopia management/sip server (fqdn): rvcn-iview-7201.Radvision.Com. For a redundancy deployment, the common name must be the public virtual fqdn. • country code must include t...
Page 58: Note
Note the certificate must be signed as a certificate compatible with base-64 ascii code. If other components communicating with scopia management also have their own certificates, we recommend using a common ca for all certificates for a more efficient implementation. Select web server as the certif...
Page 59
However, if the component certificates are signed by a different ca than scopia management’s certificate, you may need to upload more certificates to establish authenticity, as described in “uploading certificates for other devices” on page 61 . For more information about which certificates are requ...
Page 60
Figure 6-10 defining the certificates to be uploaded a. Select add to browse to the ca root and intermediate certificates. The open window is displayed. B. Browse to the ca root and intermediate certificates. C. Select open. D. Select upload. Verify that the upload success message is displayed. The ...
Page 61: Note
Generating the certificate signing request for the scopia tip gateway this procedure describes how to generate a certificate for the scopia tip gateway, that needs to be signed by the network administrator using a certificate authority certification. Note using encryption is subject to local regulat...
Page 63: Note
Figure 6-12 the save certificate request step 5 copy the certificate request into a separate text file and save it with the .Csr extension. Step 6 select close. Step 7 send the text file containing the certificate request to your network administrator for signing using a certificate authority applic...
Page 64: Note
Each time scopia management tries to establish a new tls session with the gateway, scopia management sends its identity certificate to the gateway. The gateway must have all the certificates required to authenticate the validity of that certificate. Only then a secure connection is established. For ...
Page 65
The upload certificate window opens. Step 5 paste the content of the gateway certificate signed by the ca and select ok. The ca signed certificate is uploaded. Figure 6-14 uploading a signed certificate step 6 select upload under the ca root section of the window to upload the ca’s root certificate....
Page 66: Note
Uploading certificates for other devices this procedure describes how to import the root (and intermediate, if required) certificates to scopia management for devices in your deployment. This is necessary if the device certificates are signed by a different ca than scopia management’s certificate (s...
Page 68: Note
Step 7 repeat for each root and intermediate certificate of each device. Step 8 select all certificates you uploaded and select apply. The system prompts for a restart to implement the newly uploaded certificates. Step 9 continue with “enabling encryption with scopia tip gateway” on page 63 . Enabli...
Page 69: Note
Note encrypting communications between the gateway and scopia management is typically less common since they are usually both located behind the firewall inside an enterprise. This section details how to encrypt communications between the scopia gateway and the video network. To encrypt control and ...
Page 70: Note
Figure 6-18 enabling h.235 call support e. Select save. F. Select close step 7 to encrypt communications with scopia management which acts as the sip server, select tls. For details, see “configuring the scopia tip gateway in scopia management” on page 30 . Step 8 continue with “enabling the tls con...
Page 71
Figure 6-19 adding the b2bfqdn element step 4 configure the dns of the b2bua component by setting values in the entire element as shown in figure 6-20 on page 66 : figure 6-20 adding the element step 5 save and close the file. Step 6 start the scopia management service and the scopia management sip ...
Page 72: Note
This section details to the ongoing administrator tasks required to maintain your video network: • upgrading the software file of a video device ......................................... Page 67 • restoring the previous software version of a network device ....................... Page 69 • downgradi...
Page 73
Before you begin before upgrading your video network devices, including endpoints, do the following: • before upgrading a video device software, back up its configuration by retrieving its configuration file. For more information on remote backups, see the . • go to http://licensing.Radvision.Com/ t...
Page 74
Figure 7-2 uploading software update table 7-1 entering browsing details field description software upgrade file this field is automatically filled when you select the software upgrade file. Save as enter the name of the software upgrade file. Description enter a free text description of the upgrade...
Page 75
During this procedure the network device shuts down for a few minutes causing all active calls to be disconnected. Some parameters are not backed up and cannot be restored: • ip address • ip mask • default router ip address • mtu size - the size of the packets received from the gateway • dns suffix ...
Page 76
Downgrading your scopia tip gateway if necessary, you can downgrade your network device in one of the following ways: • to downgrade one version back after you upgraded your network device, perform the procedure in “restoring the previous software version of a network device” on page 69 . • to downg...
Page 77
Www.Radvision.Com about radvision radvision (nasdaq: rvsn) is the industry’s leading provider of market-proven products and technologies for unified visual communications over ip and 3g networks. With its complete set of standards based video networking infrastructure and developer toolkits for voic...