1460 Border Gateway - Product Specification

Benefits

See Also

1460 Chassis rear

The 1460 Border Gateway (BG) provides media control at IP to IP interconnect, peering, and access locations under the control of the Newport 1460 Border Controller. Optionally, the 1460 BG may be controlled directly by third party Softswitches using a Megaco/H.248 interface. Key capabilities provided by the 1460 are:

The ability for SIP and H.323 controlled media to traverse corporate, consumer and core network NAPT and Firewall devices.
Quality of Service enforcement using media session policing to prevent users from exceeding their negotiated session bandwidth.
Border media security protecting the core network, customers, and service revenue.
Regulatory compliance providing Lawful Intercept of media.

The 1460 BG can scale up to 160,000 concurrent calls in a single, resilient 19" chassis; media bandwidth and session set up performance can be scaled independently.

Security

Network Address and Port Translation (NAPT) provides media topology hiding and ensures connectivity to networks that use private or un-routable addressing schemes. Randomised port allocation prevents malicious media access through port scanning attacks. Policing of RTCP as well as RTP streams is performed to ensure that users only pass traffic in their RTP stream.

Quality of Service

Media Policing prevents fraudulent or faulty sessions from exceeding agreed bandwidths, protecting the QoS of other clients. Media policing is performed per media flow within a session. The policing policy is passed to the 1460 BG from the 1460 Border Controller or 3rd party Softswitch on call setup.

DiffServ Code Point (DSCP) re-marking enables media flow differentiation based on a quality policy to be enforced on a per-user and per-session basis

Carrier Grade

The 1460 BG may be deployed in non redundant or redundant mode.

In non redundant mode, the system is protected by the controlling 1460 Border Controller or Softswitch detecting the 1460 BG failure and directing all subsequent media sessions to alternative BG media resources. This effectively provides resilience at the network level although media sessions on the failed resource are lost.

In redundant mode the 1460 BG has no single point of failure in software or hardware, providing in excess of 99.999% availability. It has 1+1 resilience on all system modules, including power distribution units, fans and disks, with physical link aggregation (802.3-2002) providing link resilience and load balancing. Management is via dual, independent management networks.

The 1460 (BC and BG) supports the secure traversal of corporate and network based firewalls and NAT devices, without deploying additional customer premise equipment or replacing existing firewalls and NAT devices.

Regulatory

The 1460 BG acts as part of a Lawful Intercept solution providing media intercept. When used in conjunction with with a 1460 Border Controller, a turnkey Lawful Intercept solution can be provided intercepting all required signalling and media paths and providing Handover Interfaces that are fully compliant with local regulatory requirements.

Standards

The Newport Networks 1460 BG is future proof and complies with the architectural requirements of the 3GPP IMS and ETSI TISPAN standards. At the subscriber edge of the core network, the 1460 BG provides the TISPAN Access to Core Border Gateway Function (A/C-BGF) capabilities. At interconnect points, the 1460 BG provides the TISPAN Interconnect Border Gateway Function (I-BGF).

Key Features

Security

Access Control including signalling control of media pinhole firewall (using 1460 BC or 3^rd party Softswitch)
Core network topology hiding using NAPT at layer 3 and layer 5
Customer address hiding - Route stripping
DoS protection
- Policing of RTP and RTCP on a per-session basis

Quality of Service

Policing on per-session basis
Re-mapping of ToS bits and DiffServ codepoints based on:
- SIP quality parameter
- Media type and codec in signalling
- Static mapping table

Carrier Grade Resilience

Modular, chassis-based system with no single point of failure
Resilient architecture with 1+1 sparing for all system modules
Link aggregation (802.3-2002) for link resilience and load balancing

Regulatory

Turnkey Lawful Intercept solution when used in conjunction with 1460 Border Controller
Lawful Interception compliant to (CALEA and ETSI). National variants supported include, but are not limited to:USA, Canada, UK, Germany and Italy

Connectivity

Layer 2 VLAN tagging (802.1q and 802.1p)
Optional external control from Call Agents/Softswitches using the Megaco/H.248 protocol

Management

Operational configuration and monitoring using a web-based Graphical User Interface (GUI)
Full configuration and monitoring using an advanced Command Line Interface (CLI)
Alarm and Trap element management using SNMPv1
Resilient connections to management systems are via dual, encrypted Ethernet interfaces, physically separated from the data plane
Full ICMP support

Product Details and Performance

Chassis Unit

19" rack mountable, 21U high
482.6 mm (W) x 580.5 mm (D) x 933.2 mm (H)
ETSI racking practices
12 Universal Card Slots + 2 dedicated Switch and Management slots
2 resilient, load-sharing Power Distribution Units supplying 6 power zones -38 VDC to -57 VDC, typically < 1.3 kW

Application Processing Engine Card

4 application processors

8-Port 10/100 Ethernet Line Interface Card

Half/full duplex, auto-negotiation (IEEE 802.3u)
3 application processors

2-Port Gigabit Ethernet Line Interface Card

Dual optical or electrical interfaces (IEEE 802.1z)

Switch and Management Card

Management host operates in an active standby model
(hot standby)
Active-independent disk control, with data synchronization at the application level
Dual 30 Gbps switch fabric operating in an active-active, load sharing model