This profile specifies the flag parameters associated with secure Rtp RTCP.

To View and Edit Flags

On SBC main screen, go to Configuration > Profile Management > Category: Media Profiles > Packet Service Profile > Secure Rtp RTCP > Flags.

Select the desired Packet Service Profile from the drop-down list to view its respective Flags parameters.

The Flags window is displayed.

Figure 1: Profile Management - Media Profiles - Packet Service Profile - Secure Rtp Rtcp - Flags

The following fields are displayed:

Table 1: Flags

Parameter

Description

Allow Fallback

When the check box is selected, the SBCfalls back to standard RTP/RTCP when crypto attribute negotiation fails. The options are:

  • Disable (default)
  • Enable

Enable SRTP

When the check box is selected, Secure RTP/RTCP is enabled on the SBC. The options are:

  • Disable (default)
  • Enable

SBC supports SRTP media pass-through for SRTP and SRTCP media streams. SBC does not terminate the SDP security description or SRTP media streams and passes them through without authenticating, decrypting, and encrypting. If Enable SRTP is enabled and Allow Passthru flag is also enabled, SBC treats SRTP media as plain text RTP pass-through media.


Reset ROCOn SRTPRekey

Enable flag to reset the SRTP Roll Over Counter when the session key changes. The options are:

  • Disable (default)
  • Enable
Reset Enc Dec ROCOn Dec Key ChangeEnable flag to reset Roll Over Counter for both encryption and decryption when decryption key changes.
  • Disable (default)
  • Enable
Update Crypto Keys On Modify

For an SRTP call, if this flag is enabled in Packet Service Profile and call leg mode is changed from sendonly/inactive/recvonly to sendrecv, the SBC generates a new set of crypto attributes. The options are:

  • Disable (default)
  • Enable
Allow Passthru

When this flag is enabled, it allows SBC to pass-through SRTP media without authenticating, decrypting, and encrypting it internally. When selected, this flag prioritizes SRTP pass-through media over terminated SRTP media.

When this flag is disabled, SBC terminates all SRTP and SRTCP media for authentication, encryption, or decryption.

To configure this flag, SRTP must be enabled by enabling Enable SRTP flag.

The options are:

  • Disable (default)
  • Enable

Make the required changes and click Save at the right hand bottom of the panel to save the changes made.

  • No labels