ONeSBC

Product Presentation October 2018

27/11/2018
This presentation has been prepared by Ekinops. This
presentation is not for onward distribution. Neither the whole
nor any part of the information in this presentation may be
disclosed to, or used by, any other person or used for any
other purpose without the prior written consent of Ekinops.
Although this material is based upon information that
Ekinops considers reliable, Ekinops nor any of its connected
persons have not verified this information and do not
represent that this material is accurate, current, or complete
and it should not be relied upon as such. Accordingly, neither
Ekinops nor any of its connected persons accepts any
liability or responsibility for the accuracy or completeness of,
nor makes any representation or warranty, express or
implied, with respect to, the information on which this
presentation is based or that this information remains
unchanged after the issue of this presentation.
The contents of this presentation should not to be construed
as a solicitation or recommendation. This presentation is for
information purposes only and is purely indicative. It does not
constitute an offer or invitation for the sale or purchase of
securities or any of the businesses or assets described
herein or any form of commitment, advice, recommendation
or valuation opinion on the part of Ekinops or its connected
persons. No part of this presentation, or the fact that the
presentation has been made, forms the basis of or can be
relied upon in connection with any contract or investment
decision or commitment relating thereto.
In this notice, “Ekinops” means Ekinops S.A. and “its
connected persons” means the shareholders, subsidiaries
and subsidiary undertakings of Ekinops and the respective
directors, officers, employees, agents and advisors of each
of them.
2
Use Cases
ONeSBC – Hosted PBX Use Case (aka Centrex)
ONeSBC provides an intelligent demarcation unit for the voice services

Survivability for Centrex solution

eSBC inside

PSTN
SIP AS

 Benefits:
 Backup for Centrex solution  local connectivity with optional PSTN / ISDN backup
 Provide dial tone continuity

4
ONeSBC – Key Features for Hosted PBX
Call Admission Control
• Prevents bad quality calls because of lack of bandwidth

Transparent Registration
• Signaling goes to the SIP AS
• RTP media is forwarded locally

Backup: when uplink is down:

• Signaling is intercepted
• Call can be made within user on the LAN
• Optional backup to PSTN (ISDN or FXO)

Security
• DoS protection
• Call filtering
• Hide network topology

5
IPBX Interconnect Use case: Service Demarcation
Lowers Opex
• Features
• Security (authorization, filtering, DOS protection)
• SIP normalization and repair
• Transcoding (RTP, DTMF, Fax)
• LAN & WAN MOS scoring SBC inside
SIP Trunk SIP Trunk

SIP AS
IP PBX, Asterix, Scope of telco SIP trunking service
Call Manager…

 Benefits
 Guarantee the interoperability between the IP PBX and the network
 A clear demarcation provides SLA to the end user
 Standardized behavior and configuration on WAN side
6
Key Differentiators
Unique blend in one box:
• High-performance, versatile WAN routers
• Form factor adapted to cost-sensitive SME market
• With ONeSBC as a software license

Market-leading interoperability with SIP networks

Complete solution portfolio enabling smooth communication services

transformation

7
Detailed Characteristics
Straight-forward Path Tuning for new IPBX

Common configuration IPBX-specific configuration

- Contains network side settings (SIP, - Specific profile for a PBX type
WAN, …) - Created and qualified during IOT tests
- Specific to each location
Independent from PBX vendor

Pushed from OSS Profile Loaded from OSS or

(CWMP, SSH, …) Installer Web GUI

Installation by IPBX technicians. No double installation. => TCO

9
Interoperability Program
Test combinations are endless (WAN SIP options, LAN SIP behavior, call
flows). Solution:
• ONEeSBC primarily solves IOT issues thanks to its architecture.
• Field proven SIP stack.

BroadSoft certifies ONE range

• BroadSoft SIP Access Device
• BroadSoft Device Management Interface

Certified SIP Connect 1.1

Tested interoperability:
• Avaya, ALU OXO, Asterisk, Cisco Call Manager, Siemens, Aastra, Shoretel,
Allworks, Mitel, LG, NEC, Samsung, Skype for Business.
10
SIP Parsing / Session Handling
Security
Transparent Bridge B2B/GW

Parsing √ √ √
Session handling √ √ √

LAN WAN

Services
IP Phone

Softswitch
SIP Stack SIP Stack

OneOS

 Benefits
 Standard/Unique SIP interface toward the network – interworking
 Automatic drop of malformed SIP packets
 Stateful SIP Proxy handling SIP sessions
 Automatic drop of out of session SIP packets
11
(Trunking Solutions) B&B & Selective
Transcoding
Media is negotiated separately for each call leg.

LAN WAN
RTP proxy optionally always involves DSP, that SIP Proxy Signaling
manage transcoding of codecs, DTMF and fax
(T.38 to pass-through) RTP Proxy
Routing
Signaling
Voice

12
(Centrex Solutions) Standard & Bridge Mode
SIP signaling is relayed with the following rules:
• Some SIP headers can be manipulated according to
some configurable rules. LAN WAN
• SDP is analyzed and manipulated to manage the NAT
SIP Proxy Signaling
ALG for RTP
• Separated local and remote authentications
NAT ALG
SDP negotiation is done by end-to-end users.
Routing
Signaling
Voice

13
Two-Step / Transparent Registration
Transparent Bridge B2B/GW
Transparent registration √
Two-step registration √ √

Registrar Registrar

Softswitch
OneOS
Transparent REGISTER

REGISTER
Two-Step REGISTER

 Benefits
 Transparent Registration - Simplified provisioning
 Two-Step Registration - Enhanced security (distinct credentials)

14
DoS Self Protection
Security
DoS
Critical protocol stacks validation
(SIP/SDP)

Forwarding plane protection and SIP OneOS

message rate limiting Confidentiality and reliability
• SIP-TLS/TCP and SRTP
Proactive elimination of
• Security vulnerabilities Test Means
• Robustness flaws • Black-Box Negative Testing

• Implementation flaws • Fuzzy-ing

• Rogue traffic source • DoS

 Benefits
 Improved security and robustness - Carrier-class software quality and reliability
 Protection mechanism against SIP flooding
 Improved security to protect the device against DoS attacks
15
Multi-tenant Service Architecture
Network Optimization
Transparent Bridge B2B/GW
Explicit local registrar √ √
SIP-SIP signaling √ √ √

N x Registrations – 1 x SIP Trunk √ x SIP Trunks – Y x SIP Trunks

Registrar

SIP Trunk
OneOS
OneOS

 Benefits
 Create interconnections between VoIP networks
 Manage endpoint communication through SIP Trunks

16
Network Topology Hiding
Network Optimization
• End-point configuration Transparent Bridge B2B/GW

• Outbound Proxy / Registrar =

Hide core topology √ √ √

Address translation √ √ √
LAN addresses NAT pinholes management √ √ √

• Hidden network VoIP entities Hosted NAT traversal √ √ √

• NAT
• Dynamic control of UDP ports
• Hosted NAT traversal NAT
• Local RTP routing LAN WAN / VoIP
OneOS

 Benefits
 No direct access from the LAN to the VoIP Network
 Endpoint configuration with parameters which have a local significance

17
Voice Service Handling
Network Optimization
Voice Service Handling Transparent Bridge B2B/GW
• Control the set of SIP methods allowed on Transparent SIP service √ √

the network Local SIP service logic √

• Choose the appropriate tradeoff between

openness and security

Transparent Bridge B2B/GW

Basic call √ √ √
Call hold/retrieve √ √
SIP Control
Call transfer/REFER √ √
MWI √ √
Package event – RFC 3265 √ √
NOTIFY – XML “content-type” √ √
OneOS

 Benefits
 SIP openness tailored to the requirement of the end-user service
 Fits in Centrex-like and IP telephony environments
18
Transcoding
Network Optimization
Transcoding / QoS Transparent Bridge B2B/GW
Media transcoding √
• RTP Proxy DTMF transcoding
End-to-end codec negotiation
√

• QoS Marking / Re-Marking Fax transcoding √

QOS management √ √ √

RTP Proxy
• Media Transcoding and play-time re-packetization
• DTMF Transcoding (RFC2833, SIP INFO) RTP Proxy
• Fax Transcoding (T.38, passthrough)

QoS Marking / Re-Marking

Media 1 OneOS Media 2
• Signalling Marking / Re-Marking
• RTP flow Marking / Re-Marking

 Benefits
 Consistent media behavior seen by the SIP network (codec negotiation, DTMF…)
 Carrier-grade QoS
19
Selective Transcoding
Network Optimization
Avoids using DSP whenever possible: Transparent Bridge B2B/GW
Selective transcoding √
• I.e. when network and IPBX use a common
codec IPBX ONeSBC Network
INVITE(G722>G711>G729)
Each call leg selects a codec according to INVITE(G722>G711>G729)
each peer preference 100/180/200
100/180/200 (G722)
(G729)
ONeSBC then renegotiates the codec on ACK ACK
customer-side to select the preferred codec
INVITE(G729) INVITE(G729)
by the network and supported
200(G729) 200(G729)
ACK ACK

Codec re-alignment

 Benefits
 Consistent media behavior seen by the SIP network (codec negotiation, DTMF…)
 Carrier-grade QoS
20
Call Survivability
Service Optimization

Standard Operations
Hosted
Platform
SIP Appli.
Server

Backup Mode
Hosted
Platform
SIP Appli.
Server
OneOS RTP anti-tromboning ensures no WAN bandwidth is consumed under normal operations.
Signaling
OneOS manages call locally upon detection of any failure (DSL, IP network, SIP, …). Calls to public Media
network remains possible via backup interfaces.
21
Call Routing Optimization
Service Optimization
• Call Routing optimization Transparent Bridge B2B/GW

• Automatic call distribution Load balancing

Backup
√
√
√
√
√
√
• Voice service continuity SRST √ √ √
Legacy interface management √ √ √
• Automatic Call Distribution PSTN

• Round-Robin
• Load Sharing BRI/PRI/FXO
Backup
• Priority-based
• Voice Service Continuity Survivable
ONEXX0

Telephony
• Backup (VoIP, ISDN, Analog)
• Survivable Site Telephony
 Benefits
 Uninterrupted Voice Service
 Makes it possible to connect several servers composing an IP-PBX
22
SIP Monitoring
Service Optimization
SIP Monitoring Transparent Bridge B2B/GW

• Detect SIP failures Endpoint monitoring √ √ √

Intrusive mode √ √ √
• Change the network topology accordingly

Automatic SIP Failure detection SIP Proxy Application Server

• Receiving / sending SIP polling OPTIONS

• Network failure detection OPTIONS

OPTIONS
• Trigger backup routing
32s 10 x

• PBX failure detection OPTIONS

• Load balancing (hot/stand-by) OPTIONS

Dial Pe e r Dow n

RFC3263 / IMS Geo-redundancy support OPTIONS

OPTIONS

 Benefits
 Adapt to changing network conditions for degraded operation mode
23
Call Admission and Control (CAC)
Service Optimization
CAC: Transparent Bridge B2B/GW

• Control the number of simultaneous calls CAC √ √ √

• Control the bandwidth use by VoIP services

Dynamic control of inbound/outbound calls based on:

• The number of calls
• The bandwidth used by the negotiated codec LAN WAN
CAC CAC
• Video codecs are hidden when bandwidth becomes limited OneOS

CAC policies attached to the LAN and to the WAN

• Codec negotiation
• Transparent or restricted

 Benefits
 Safeguard call quality by controlling the bandwidth used by the voice traffic
 Control the maximum number of simultaneous calls
24
Voice Quality Monitoring

Real-Time Quality Generator

SIP Signaling Details
RTP Codec

OneManage
Global Statistics
Log Call Details
Call Quality Metrics (MOS, jitter, loss & codec used)
RTCP-XR

Global Statistics
Log Call Details ONeSBC
Call Quality Metrics (MOS, jitter, loss & codec used)
RTCP-XR
25
VQM collector: OneManage, an EKI product
Provisioning Alarms & Events Sys. Alerts
REST APIs REST APIs Email Northbound

OneManage
Common: UI, user management

Provisioning
Alarm / Log /
(formerly
Event VQM
known as
framework
OneProvisio)

TR-069 Syslog SNMP RFC 6035 Southbound

Based on standard
protocols

26
Troubleshooting / Monitoring Tools
Troubleshooting/Monitoring
Onboard Tools
Transparent Bridge B2B /GW
• Service Monitoring Debugging / troubleshooting √ √ √

• Remote troubleshooting Secure access (SSH/RADIUS/TACACS+, web…) √ √ √

Extended RFC 6035 ONEOS6 only ONEOS6 only √

Debug functions (debug, events, counters) CDR √ √ √
Monitoring jitter / delay / packet loss √
Secure Remote Access
Reporting Examples
• Statistics (show, SNMP) • Call distribution (in, out, failures…)
• CDRs • RTP statistics (jitter, loss…) and E-Model
scoring
• SIP debug
• Voice events
 Benefits
 Service supervision down to the customer premises
 Remote troubleshooting
27
THANK YOU

28
Ekinops France
13 avenue Morane Saulnier,
78140 Vélizy Villacoublay, France

www.oneaccess-net.com