4
Avaya Inc. Proprietary and Confidential. Use pursuant to the terms of your signed agreement or Avaya policy. Sales Tool - Primer Avaya Session Border Controller Advanced for Enterprise with Remote Worker Introduction Many enterprise networks today support remote Session Initiation Protocol (SIP) users with a Virtual Private Network (VPN) host arrangement. This approach can be costly and does not truly secure applications. Because the VPN tunnel creates an environment in which the remote client becomes an extension of the private enterprise network, malware, viruses, etc. that exist on the remote client may be allowed into the corporate network right along with valid application traffic. As one of its key features Avaya Session Border Controller Advanced for Enterprise provides superior security across untrusted networks by using encryption and by applying granular security polices to all traffic to and from the remote registered users. While many enterprises have not deployed SIP in their networks due to cost, resource constraints and other factors, most still have growing requirements for remote worker applications. The Virtual Private Network-less remote worker can still help by providing cost-effective and highly secure remote worker environments. Avaya Session Border Controller Advanced for Enterprise allows you to implement measures to help ensure remote users communicate securely and safely without losing the unified communications benefits of an office based employee. Our Session Border Controller Advanced for Enterprise can help you: Define and implement strong unified communications policies. It can help you define these policies as well as enforce them based on network, user, device, and time-of-day. Session Border Controller Advanced for Enterprise can also: Integrate with existing infrastructure for strong access control - by authenticating Remote Users and devices against existing authentication, authorization, and accounting servers. Maintain signaling and media privacy - traffic that passes over an untrusted network is susceptible to reconnaissance activities such as sniffing and eavesdropping attacks. Encryption, using Transport Layer Security for signaling traffic and Secure Real-time Transport Protocol for media traffic, must provide privacy without compromising performance. With the Avaya Session Border Controller Advanced for Enterprise appliances, your internal phones, media gateways, conference bridges, and call servers do not require upgrades to support encryption as encrypted traffic is terminated from the Internet and unencrypted data is streamed to the private enterprise intranet. Provide and monitor voice and video quality - real-time Avaya Session Border Controller Advanced for Enterprise appliances offer deterministic performance with delays for media packets measured in hundreds of microseconds (even when encryption is involved and call volume grows) while reporting VPN quality metrics such as latency and jitter. Simplify firewall/Network Address Translation traversal - employee home routers and Wi-Fi hotspots, generally not under the control of enterprises, must have a security appliance in place in their enterprise demilitarized zones to solve far-end firewall/ Network Address Translation traversal issues. Our solution simplifies near-end Network Address Translation traversal using static rules that do not require updates when changes occur in the enterprise VPN. Mitigate threats can detect thousands of attacks and security threats based on the most advanced library of vulnerabilities.

Avaya SBCAE Remote Worker Application Primer[1]

Embed Size (px)

DESCRIPTION

avaya

Citation preview

Page 1: Avaya SBCAE Remote Worker Application Primer[1]

Avaya Inc. – Proprietary and Confidential.

Use pursuant to the terms of your signed agreement or Avaya policy.

Sales Tool - Primer

Avaya Session Border Controller Advanced for Enterprise with Remote Worker Introduction

Many enterprise networks today support remote Session Initiation Protocol (SIP) users with a Virtual Private Network (VPN) host arrangement. This approach can be costly and does not truly secure applications. Because the VPN tunnel creates an environment in which the remote client becomes an extension of the private enterprise network, malware, viruses, etc. that exist on the remote client may be allowed into the corporate network right along with valid application traffic.

As one of its key features Avaya Session Border Controller Advanced for Enterprise provides superior security across untrusted networks by using encryption and by applying granular security polices to all traffic to and from the remote registered users.

While many enterprises have not deployed SIP in their networks due to cost, resource constraints and other factors, most still have growing requirements for remote worker applications. The Virtual Private Network-less remote worker can still help by providing cost-effective and highly secure remote worker environments.

Avaya Session Border Controller Advanced for Enterprise allows you to implement measures to help ensure remote users communicate securely and safely without losing the unified communications benefits of an office based employee. Our Session Border Controller Advanced for Enterprise can help you:

Define and implement strong unified communications policies.

It can help you define these policies as well as enforce them based on network, user, device, and time-of-day.

Session Border Controller Advanced for Enterprise can also:

Integrate with existing infrastructure for strong access control - by authenticating Remote Users and devices against

existing authentication, authorization, and accounting servers.

Maintain signaling and media privacy - traffic that passes over an untrusted network is susceptible to reconnaissance

activities such as sniffing and eavesdropping attacks. Encryption, using Transport Layer Security for signaling traffic and

Secure Real-time Transport Protocol for media traffic, must provide privacy without compromising performance.

With the Avaya Session Border Controller Advanced for Enterprise appliances, your internal phones, media gateways,

conference bridges, and call servers do not require upgrades to support encryption as encrypted traffic is terminated from

the Internet and unencrypted data is streamed to the private enterprise intranet.

Provide and monitor voice and video quality - real-time Avaya Session Border Controller Advanced for Enterprise

appliances offer deterministic performance with delays for media packets measured in hundreds of microseconds (even

when encryption is involved and call volume grows) while reporting VPN quality metrics such as latency and jitter.

Simplify firewall/Network Address Translation traversal - employee home routers and Wi-Fi hotspots, generally not

under the control of enterprises, must have a security appliance in place in their enterprise demilitarized zones to solve

far-end firewall/ Network Address Translation traversal issues. Our solution simplifies near-end Network Address

Translation traversal using static rules that do not require updates when changes occur in the enterprise VPN.

Mitigate threats – can detect thousands of attacks and security threats based on the most advanced library of

vulnerabilities.

Page 2: Avaya SBCAE Remote Worker Application Primer[1]

Avaya Inc. – Proprietary and Confidential.

Use pursuant to the terms of your signed agreement or Avaya policy.

Sales Tool - Primer

Solution Overview

The diagrams below show the overall network architecture for this featuring several remote working scenarios.

The endpoints and Internet Protocol Private Branch Exchange (IP-PBX) remain generic so that they can be deployed

with a variety of appliances (see the Endpoint IOT List in Appendix A and the PBX IOT list in Appendix B).

Key differentiators include:

Encryption

Policy Enforcement

Signature-based Intrusion Detection System/ Intrusion Prevention System

User friendly graphical user interface and install wizards

Encryption:

The encryption of signaling with Transport Layer Security and media with Secure Real-time Transport Protocol is essential

to provide a more secure remote worker. The endpoints must support Transport Layer Security and Secure Real-time

Transport Protocol for this to work. Proper encryption certificate validation methods are supported for multiple end points.

Trust certifications that provide validation of the certificate by the endpoint is currently supported in the Avaya one-X® 96xx

desk phones. This capability will be added to the Avaya one-X mobile communicator and The Avaya Flare Experience SIP

clients in the future.

Policy Enforcement:

Robust and granular policy control is an important capability of the Avaya Session Border Controller Advanced for

Enterprise. It is what allows the enterprise to control things such as international calling rules, codec enforcement, media

streams rules, call volume and time-of-day restrictions.

The diagram below shows the basic remote worker architecture with the Avaya Session Border Controller Advanced for

Enterprise in the demilitarized zone between the internal and external data firewalls. On the left side of the diagram the

private enterprise network consists of the endpoints and the IP-PBX call server. On the right side of the diagram the remote

worker endpoints are coming into the demilitarized zone from the internet (an untrusted network).

Remote Worker – Architecture Avaya Session Border Controller Advanced for Enterprise

Page 3: Avaya SBCAE Remote Worker Application Primer[1]

Avaya Inc. – Proprietary and Confidential.

Use pursuant to the terms of your signed agreement or Avaya policy.

Sales Tool - Primer

These remote endpoints register to the Avaya Session Border Controller Advanced for Enterprise securely (with Transport

Layer Security / Secure Real-time Transport Protocol if they support it) and the Avaya Session Border Controller Advanced

for Enterprise proxies them to the call server which is sitting behind the demilitarized zone in the enterprise core (a trusted

network). This provides a highly secure approach extends the unified communications environment to enterprises for SIP

clients on mobile devices, smartphones, tablatures, laptops and desktops as well as teleworker hard phones.

The diagram above shows the remote worker solution in an enterprise that has converted to SIP trunks for their voice

communications with the outside. The remote worker endpoints are registering over the internet to the Avaya Session Border

Controller Advanced for Enterprise in the demilitarized zone. While at the same time the Avaya Session Border Controller

Advanced for Enterprise (or a separate Session Border Controller) is providing Session Border Controller SIP trunk

functionality. Note that the cloud shown to depict the SIP trunk service provider could either be an internet connection or it

could be private IP (Multiprotocol Label Switching).

Avaya remote worker can often be deployed, even if the client has not yet deployed SIP trunks. In the diagram at the top

of page 4, the IP-PBX communicates with a router/gateway that is equipped with Time-division multiplexing (TDM)

interfaces to connect to the carrier for voice trunking. The endpoints in the enterprise core (on the left side) may or may

not be SIP endpoints.

Remote Worker – With SIP Trunks

Page 4: Avaya SBCAE Remote Worker Application Primer[1]

Avaya Inc. – Proprietary and Confidential.

Use pursuant to the terms of your signed agreement or Avaya policy.

Sales Tool - Primer

The diagram below shows a very common scenario. Even when SIP trunks are deployed, many enterprises will keep a few

TDM lines in the form of a primary rate interface or several telephone service lines to facilitate the fax, alarm and elevator

lines and for emergency backup Switched Telephone Network connectivity. In this diagram, SIP trunks are supported (along

with the remote workers) by the Avaya Session Border Controller Advanced for Enterprise in the demilitarized zone while at

the same time the IP-PBX can route calls to the router for TDM access.

Remote Worker Avaya Session Border Controller Advanced for Enterprise Pricing Example

Please visit the Quoting and Ordering guide for various pricing examples and ordering assistance.

Posted here http://portal.avaya.com/ptlWeb/products/P0997/OrderingInformation

Remote Worker – With Time-division multiplexing Trunks

Remote Worker – with both SIP and TDM Trunks


Social and Ubiquitous Technologies for Remote Worker Wellbeing … · 2020. 7. 27. · Social and Ubiquitous Technologies for Remote Worker Wellbeing and Productivity in a Post-Pandemic

Social and Ubiquitous Technologies for Remote Worker Wellbeing … · 2020. 7. 27. · Social and Ubiquitous Technologies for Remote Worker Wellbeing and Productivity in a Post-Pandemic

Documents
Avaya Servers and Avaya Gateways - Techmode · avaya.com Avaya G350 Gateway Avaya G250 Gateway Avaya IG550 Gateway in Juniper J6350 Router. Avaya Servers The Avaya family of servers

Avaya Servers and Avaya Gateways - Techmode · avaya.com Avaya G350 Gateway Avaya G250 Gateway Avaya IG550 Gateway in Juniper J6350 Router. Avaya Servers The Avaya family of servers

Documents
The Remote Worker - Tips and Guidance for Successful ... · The Remote Worker - Tips and Guidance for Successful Implementation ... Telecommuting and flexible scheduling aren’t

The Remote Worker - Tips and Guidance for Successful ... · The Remote Worker - Tips and Guidance for Successful Implementation ... Telecommuting and flexible scheduling aren’t

Documents
The Remote Worker: Tools for Remote Monitoring

The Remote Worker: Tools for Remote Monitoring

Technology
Avaya IP Agent - Avaya-Telesavers Avaya one-X Solutions Integrators

Avaya IP Agent - Avaya-Telesavers Avaya one-X Solutions Integrators

Documents
Remote Worker Grant Program - Vermont · 2019-10-02 · Remote Worker Grant Program Annual Report – October 1, 2019 Agency of Commerce and Community Development 3 EXECUTIVE SUMMARY

Remote Worker Grant Program - Vermont · 2019-10-02 · Remote Worker Grant Program Annual Report – October 1, 2019 Agency of Commerce and Community Development 3 EXECUTIVE SUMMARY

Documents
How to be a Connected Remote Worker in 10 Easy Steps

How to be a Connected Remote Worker in 10 Easy Steps

Technology
The Avaya Aura Platform - Zones, Incmedia.zones.com/images/pdf/avaya-aura-platform.pdf · Avaya developed the Avaya Aura ... • ®Avaya Aura Conferencing: Enterprise-grade, on-premises

The Avaya Aura Platform - Zones, Incmedia.zones.com/images/pdf/avaya-aura-platform.pdf · Avaya developed the Avaya Aura ... • ®Avaya Aura Conferencing: Enterprise-grade, on-premises

Documents
Secure Remote Worker for AWS Design Guide

Secure Remote Worker for AWS Design Guide

Documents
REMOTE MAINTENANCE WORKER PROGRAM ANNUAL REPORT · 2021. 2. 3. · REMOTE MAINTENANCE WORKER PROGRAM . ANNUAL REPORT . State Fiscal Year 2020. MA RMW Shyler Johnson working with Don

REMOTE MAINTENANCE WORKER PROGRAM ANNUAL REPORT · 2021. 2. 3. · REMOTE MAINTENANCE WORKER PROGRAM . ANNUAL REPORT . State Fiscal Year 2020. MA RMW Shyler Johnson working with Don

Documents
AVAYA EQUINOX - Avaya Forumavayaforum.pl/wp-content/uploads/2017/03/3-Avaya-Equinox-Avaya.pdf · Avaya Aura Conferencing Avaya ( Radvision ) Scopia 8.3 Equinox Scalable Audio Web

AVAYA EQUINOX - Avaya Forumavayaforum.pl/wp-content/uploads/2017/03/3-Avaya-Equinox-Avaya.pdf · Avaya Aura Conferencing Avaya ( Radvision ) Scopia 8.3 Equinox Scalable Audio Web

Documents
Remote Maintenance Worker (RMW) Directory SFY2022

Remote Maintenance Worker (RMW) Directory SFY2022

Documents
Remote Worker - Road Warrior

Remote Worker - Road Warrior

Technology
© 2005 Avaya Inc. All rights reserved. Remote Feature Activation & Web Ticketing System

© 2005 Avaya Inc. All rights reserved. Remote Feature Activation & Web Ticketing System

Documents
Avaya Remote Feature Activation (RFA) User Guide Avaya Remote Feature Activation (RFA) User Guide ... 6 Avaya Remote Feature Activation (RFA) User Guide ... 163 About this chapter

Avaya Remote Feature Activation (RFA) User Guide Avaya Remote Feature Activation (RFA) User Guide ... 6 Avaya Remote Feature Activation (RFA) User Guide ... 163 About this chapter

Documents
Communication tool & Environment for Remote Worker

Communication tool & Environment for Remote Worker

Technology
Performance Max: The energized, productive, and energized remote worker

Performance Max: The energized, productive, and energized remote worker

Education
A Day in the Life of a Remote Worker

A Day in the Life of a Remote Worker

Technology
NS1000 V3.0 - Remote worker features -

NS1000 V3.0 - Remote worker features -

Documents
Fiber Remote Multi-IPE Interface Fundamentals Avaya

Fiber Remote Multi-IPE Interface Fundamentals Avaya

Documents
Finding work:life balance as a remote worker

Finding work:life balance as a remote worker

Technology
6 Best Practices - Avaya · 2020-07-16 · Title: Six Best Practices for Remote Contact Center Agents Author: Avaya Inc. Subject: On October 3, 2019 Avaya announced a strategic partnership

6 Best Practices - Avaya · 2020-07-16 · Title: Six Best Practices for Remote Contact Center Agents Author: Avaya Inc. Subject: On October 3, 2019 Avaya announced a strategic partnership

Documents
Avaya Servers and Avaya Gateways - White-Harriswhite-harris.com/wp-content/uploads/2009/07/avaya-servers-and... · Avaya Servers and Avaya Gateways As integral components of the Avaya

Avaya Servers and Avaya Gateways - White-Harriswhite-harris.com/wp-content/uploads/2009/07/avaya-servers-and... · Avaya Servers and Avaya Gateways As integral components of the Avaya

Documents
How to become a remote worker

How to become a remote worker

Career
Avaya Aura Solution for Midsize Enterprise - Aura, Midsize.pdf · Avaya Aura Solution for Midsize Enterprise directly addresses the challenge of anytime, anywhere worker productivity

Avaya Aura Solution for Midsize Enterprise - Aura, Midsize.pdf · Avaya Aura Solution for Midsize Enterprise directly addresses the challenge of anytime, anywhere worker productivity

Documents
The Avaya Collaborative Cloud - kommunikationsnerven.de · Avaya Aura Messaging Avaya Aura Presence Avaya Aura AES / CTI Avaya Aura Call Center Reporting Avaya Aura ACE License WEB

The Avaya Collaborative Cloud - kommunikationsnerven.de · Avaya Aura Messaging Avaya Aura Presence Avaya Aura AES / CTI Avaya Aura Call Center Reporting Avaya Aura ACE License WEB

Documents
Avaya IP Phones Avaya Ethernet Routing Switches Telephony Deployment -- … · Avaya IP Phones > Avaya IP Telephony Deployment Technical Configuration Guide Avaya Data Solutions Document

Avaya IP Phones Avaya Ethernet Routing Switches Telephony Deployment -- … · Avaya IP Phones > Avaya IP Telephony Deployment Technical Configuration Guide Avaya Data Solutions Document

Documents
Avaya on Avaya: Why Avaya UC/CC and Avaya Networking are Better Together

Avaya on Avaya: Why Avaya UC/CC and Avaya Networking are Better Together

Documents
NS1000 V3.0 - Remote worker features - Rev1.0 6 Aug., 2013

NS1000 V3.0 - Remote worker features - Rev1.0 6 Aug., 2013

Documents
Tools for Remote Worker

Tools for Remote Worker

Business