1460 Session Border Controller - Product Specification

Benefits

See Also 1460 Data Sheet PDF 1460 Performance tests PDF

1. The ability to traverse corporate, consumer and core network NAPT and Firewall devices for SIP services.
   
2. Quality of Service enforcement via session admission control and policing.
   
3. Security protection for the core network, for customers, and for service revenue.
   
4. Regulatory compliance providing Lawful Intercept and Emergency Call Handling.
   

The 1460 can scale between 5,000 and 100,000 concurrent calls in a single, resilient 19" chassis; call processing performance can be scaled independently to achieve up to 600 calls per second.

The 1460 can be deployed as a combined signalling and media session border controller or, using a standard Megaco/H.248 interface, signalling and media can be physically separated to allow centralised signalling control and distributed media control. Optionally, media streams may be controlled directly by third party Softswitches using the Megaco/H.248 interface.

The Newport Networks 1460 range is future proof and complies with the architectural requirements of the 3GPP IMS and ETSI TISPAN standards. The 1460 Border Gateway provides TISPAN Core Border Gateway Function (C-BGF) and Interconnect Border Gateway Function (I-BGF) capabilities. At interconnect points, the 1460 Border Controller acts as a TISPAN Interconnect Border Control Function (IBCF) device.

Security

Proxy pinhole firewall capabilities protect network resources and subscribers from malicious attacks; Network Address and Port Translation (NAPT) provides topology hiding and ensures connectivity to networks that use private or un-routable addressing schemes. Malicious attack prevention provided at layer 3/4 and layer 5 (SIP attacks) automatically protects the core network and thus service revenues.

Quality of Service

Session Admission Control manages traffic volumes to avoid network congestion, enabling the provision of a deterministic service level to subscribers.

Media Policing prevents fraudulent or faulty sessions from exceeding agreed bandwidths, protecting the QoS of other clients.

Signalling Policing limits the effects of Denial of Service (DoS) attacks on the signalling plane.

DiffServ Code Point (DSCP) re-marking enables media flow differentiation based on a quality policy to be enforced on a per-user and per-session basis

Anti-Tromboning (media release) enables media streams to be routed directly between User Agents (UAs) in the same corporate network without transiting the 1460 and consuming access network bandwidth.

Carrier Grade

The 1460 has no single point of failure, providing in excess of 99.999% availability. It has 1+1 resilience on all system modules, including power distribution units, fans and disks, and physical link aggregation (802.3-2002) providing link resilience and load balancing. The power is distributed into six power zones with front panel indicators displaying the health of each power zone. Management is via dual, independent management networks.

The 1460 supports the secure traversal of corporate and network based firewalls and NAT devices, without deploying additional customer premise equipment or replacing existing firewalls and NAT devices. NAT bindings with User Agents are maintained by forcing the UAs to increase the frequency of their re-registrations; excess re-registration messages are filtered by the 1460 to reduce network traffic and Call Agent loading.

Regulatory

The 1460 meets the FCCs requirements for CALEA and many ETSI based national variants for LI. A turn-key lawful interception system designed into the signalling and media paths and fully compliant Handover Interfaces.

The 1460 supports Lawful Intercept capabilities, providing authorised authorities the ability to intercept calls. Support for Emergency Call Handling (ECH) enables the identification of up to 20 pre-defined global and local emergency identifiers, bypassing any policing profiles.

Standards

The Newport Networks 1460 range is future proof and complies with the architectural requirements of the 3GPP IMS and ETSI TISPAN standards. At the subscriber edge of the core network, the 1460 Border Gateway provides TISPAN Core Border Gateway Function (C-BGF) capabilities. At interconnect points, the 1460 Border Controller acts as a TISPAN Interconnect Border Control Function (IBCF) device and the 1460 Border Gateway as an Interconnect Border Gateway Function (I-BGF).

Key Features

Security

• Access Control including signalling control of media pinhole firewall
  
• Core network topology hiding using NAPT at layer 3 and layer 5
  
• Customer address hiding - Route stripping
  
• DoS protection
  
  • SIP transaction rate limiting per registered customer
    
  • SIP registration rate limiting
    
  • Detect and reject malformed packets
    
  • Policing of RTP and RTCP on a per-session basis
    

Quality of Service

• Session Admission Control (SAC) per-customer, per-VLAN and per-physical interface:
  
  • Number of sessions allowed
    
  • Total bandwidth allowed
    
  • Number of registered users (applied to customer limit only)
    
• Policing on per-session basis
  
• Re-mapping of ToS bits and DiffServ codepoints based on:
  
  • SIP quality parameter
    
  • Media type and codec in signalling
    
  • Static mapping table
    
• Media release (anti-tromboning) for local media routing
  

Carrier Grade Resilience

• Modular, chassis-based system with no single point of failure
  
• Resilient architecture with 1+1 sparing for all system modules
  
• Link aggregation (802.3-2002) for link resilience and load balancing
  
• Alternate Call Agent routing
  

Regulatory

• Lawful Interception (CALEA and ETSI)
  
• National variants supported include, but are not not limited to:
  • USA, Canada, UK, Germany and Italy
    

Connectivity

• Automatic Channel Mapping for the secure traversal of corporate and network based NAT devices
  
• Layer 2 VLAN tagging (802.1q and 802.1p)
  
• Optional external control from Call Agents/Softswitches using the Megaco/H.248 protocol
  
• Intelligent filtering of SIP re-registration messages
  

Management

• Operational configuration and monitoring using a web-based Graphical User Interface (GUI)
  
• Full configuration and monitoring using an advanced Command Line Interface (CLI)
  
• Alarm and Trap element management using SNMPv1
  
• Resilient connections to management systems are via dual, encrypted Ethernet interfaces, physically separated from the data plane
  
• Full ICMP support
  

Product Details and Performance

Chassis Unit

• 19" rack mountable, 21U high
  
• 482.6 mm (W) x 580.5 mm (D) x 933.2 mm (H)
  
• 650mm racking practices
  
• 12 Universal Card Slots + 2 dedicated Switch and Management slots
  
• 2 resilient, load-sharing Power Distribution Units supplying 6 power zones -38 VDC to -57 VDC, typically < 1.3 kW
  

Application Processing Engine Card

• 4 application processors
  

8-Port 10/100 Ethernet Line Interface Card

• Half/full duplex, auto-negotiation (IEEE 802.3u)
  
• 3 application processors
  

2-Port Gigabit Ethernet Line Interface Card

• Dual optical or electrical interfaces (IEEE 802.1z)
  

Switch and Management Card

• Management host operates in an active standby model
  
• (hot standby)
  
• Active-independent disk control, with data synchronization at the application level
  
• Dual 30 Gbps switch fabric operating in an active-active, load sharing model
  

Registration

• Up to 1,000,000 registered users
  
• Up to 600 registrations per second
  
• Up to 7,000 re-registrations per second
  

Call Processing

• Over 100,000 concurrent calls
  
• Up to 600 calls per second
  

Delay*

• Failover time < 40 ms (APE card failure)
  
• Signalling delay: < 30 ms (typical)
  
• Media delay < 16 μs
  
  

*Note: Actual delay figures achieved will be influenced by traffic mix, registrations and re-registrations occurring.

IETF MIDCOM Compliance

• Fully compatible with the MIDCOM architecture
  

ETSI TISPAN Compliance

• Provides IBCF (Interconnect Border Control Function) capabilities
  
• Provides C-BGF (Core Border Gateway Function) capabilities
  
• Provides I-BGF (Interconnect Border Gateway Function) capabilities
  

Signalling Compliance

• SIP compliant with RFC 2543 and RFC 3261
  
• SIP-T compliant with RFC 3372
  
• SDP compliant with RFC 2327
  
• H.248/Megaco compliant with RFC 3015
  

Transport Compliance

• RFC 791 - Internet Protocol
  
• RFC 768 - User Datagram Protocol
  
• RFC 793 - Transmission Control Protocol
  

Environmental Requirements

• ETS 300 019-1-1 class 1.1 (Storage)
• ETS 300 019-1-2 class 2.2 (Transportation)
• ETS 300 019-1-3 class 3.1 (In Use)
• NEBS level 3
  
• Humidity: 5 % to 85 %
  
• Temperature: +5 ºC to +40 ºC
  

Safety

• EN60950: 2000 Edition 1
  
• IEC60950: 1999 + Corr. February 2000
  

EMC

• EN55022: 1998 A1:2000, A2:2003
  
• EN55024: 1998 A1:2001, A2:2003
  
• EN61000-3-2:2000
  
• EN61000-3-3:1995, A1:2001
  
• FCC CFR47: PART 15: 2006
  
• ICES-003