© 2023 Ribbon Communications Operating Company, Inc. © 2023 ECI Telecom Ltd. All rights reserved. The compilation (meaning the collection, arrangement and assembly) of all content on this site is protected by U.S. and international copyright laws and treaty provisions and may not be used, copied, reproduced, modified, published, uploaded, posted, transmitted or distributed in any way, without prior written consent of Ribbon Communications Inc.
The trademarks, logos, service marks, trade names, and trade dress (“look and feel”) on this website, including without limitation the RIBBON and RIBBON logo marks, are protected by applicable US and foreign trademark rights and other proprietary rights and are the property of Ribbon Communications Operating Company, Inc. or its affiliates. Any third-party trademarks, logos, service marks, trade names and trade dress may be the property of their respective owners. Any uses of the trademarks, logos, service marks, trade names, and trade dress without the prior written consent of Ribbon Communications Operating Company, Inc., its affiliates, or the third parties that own the proprietary rights, are expressly prohibited.
This document outlines the configuration best practices for the Ribbon solution covering the Ribbon Edge 8K when deployed with Microsoft Teams vSBA (virtual Survivable Branch Appliance).
Ribbon’s Edge 8000 is the newest, high-performance member of our line of services gateway routers that combines security, routing, switching, and 10 Gbps WAN interfaces with next-generation voice and data services where the combination of broadband connectivity and advanced threat mitigation capabilities are required. By consolidating fast, highly available routing, security, and next-generation SBC capabilities in a single device, enterprises can remove network complexity, protect and prioritize resources, and improve user and application experience while lowering the total cost of ownership (TCO).
A Session Border Controller (SBC) is a network element deployed to protect SIP-based Voice over Internet Protocol (VoIP) networks. Early deployments of SBCs were focused on the borders between two service provider networks in a peering environment. This role has now expanded to include significant deployments between a service provider's access network and a backbone network to provide service to residential and/or enterprise customers.
The Edge 8000 series is comprised of two models,
The 8100/8300 platform is based on the Intel Atom 8-core processor with multiple interfaces. This platform meets the following high-level requirements:
Functionality
In the subsequent sections, the Ribbon Edge 8100 and Edge 8300 are represented as Ribbon Edge 8K.
When a customer site using Direct Routing to connect to Microsoft Phone System experiences an internet outage, the intranet inside the branch will remain fully functional. Users can connect to the Session Border Controller (SBC) that provides the PSTN connectivity.
During an internet outage, the Teams Phone should switch to the SBA automatically. No action is required from the user. As soon as the Teams Phone detects that the internet service is restored and any outgoing calls are finished, the Teams Phone falls back to normal operation mode and connects to other Teams services.
The interoperability compliance testing focuses on verifying inbound and outbound call flows between the Ribbon Edge 8K, Teams vSBA, and Teams Phone.
This guide contains the following configuration sections:
Captures the Microsoft SBA configuration.
It is not the goal of this guide to provide detailed configurations that meet the requirements of every customer. Use this guide as a starting point and build the SBC configurations in consultation with network design and deployment engineers.
This is a technical document intended for telecommunications engineers to configure both the Ribbon SBCs and the third-party product.
To perform this interop, you need to:
This configuration guide is offered as a convenience to Ribbon customers. The specifications and information regarding the product in this guide are subject to change without notice. All statements, information, and recommendations in this guide are believed to be accurate but are presented without warranty of any kind, express or implied, and are provided “as is.” Users must take full responsibility for the application of the specifications and information in this guide.
The following aspects are required before proceeding with the interop:
The sample configuration in this document uses the following equipment and software:
This section covers the Ribbon Edge 8K deployment topology and the Interoperability Test Lab Topology.
The following lab topology diagram shows connectivity between Ribbon Edge 8K and Microsoft vSBA.
The sections in this document use the following sequence. The reader is advised to complete each section for successful configuration.
The following Ribbon Edge 8K configurations are included in this section:
TLS Configuration between Ribbon Edge 8K and Microsoft SBA
Ribbon Edge 8K image can be installed as mentioned below:
https://publicdoc.rbbn.com/display/E8KDOC10/Install+the+Image+File
You can order the Edge 8300 model with 24 active FXS analog ports, or 22 active FXS ports and 2 FXO ports.
Edge 8K is connected to the network as follows:
GE3: RJ45 is connected towards the PSTN leg. GE1, GE2, GE3 and GE4 are the members of BR1 VNF Private.
GE5: RJ45 is an additional interface on Edge8K connected towards the Teams Direct Routing SBA leg.
GE8 RJ45 is an additional interface on Edge8K connected towards the Teams Direct Routing leg.
Edge 8K management is configured as follows:
Log into the Edge 8K via serial console cable with "sysadm/<default password>".
Login as root "sudo -i" (enter the sysadm password).
Go to the setup wizard.
Navigate to System Startup Configuration > BR2 VNF Management.
SBC management is configured as follows:
Navigate to System Startup Configuration > Swe-Edge Configuration.
BR1 VNF Private IP can be configured as follows:
Navigate to System Startup Configuration > BR1 VNF Private.
The SBC Edge is connected to the network as follows:
Ethernet 1: RJ45 "1" is connected towards the PSTN leg.
Ethernet 3: RJ45 "3" is connected towards the Teams Direct Routing SBA leg.
Ethernet 4: RJ45 "4" is connected towards the Teams Direct Routing leg.
Configure Ethernet 1, Ethernet 3, and Ethernet 4 of the SBC Edge with the IP as follows:
Navigate to Networking Interfaces > Logical Interfaces.
Static routes are used to create communication to remote networks. In a production environment, static routes are mainly configured for routing from a specific network to a network that can only be accessed through one point or one interface (single path access or default route).
Add static routes towards the Eth1 interface 172.16.X.X (PSTN) and the Eth2 interface 172.16.X.X (Microsoft SBA).
The default static route is towards the Eth1, which is in a private network.
Prerequisites:
Go Daddy Root Certificate Authority G2 and Go Daddy Secure Certificate Authority G2 are used as a trusted CA.
Request a certificate for the SBC and configure it based on the example using Go Daddy as follows:
Step 1: Generate a Certificate Signing Request and obtain the certificate from a Certificate Authority (CA).
Use the generated CSR text from the clipboard to obtain the certificate.
Step 2: Deploy the Root/Intermediate and SBC certificates on the SBC.
After receiving the certificates from the certificate authority, install the SBC Certificate and the Root/Intermediate certificates as follows:
Validate the certificate is installed correctly.
Configure the SBC Edge with Teams Direct Routing SBA using the Easy Config Wizard.
Fill in the details for Step 1 as follows:
Enter a value for SIP sessions as per the requirement. The value is listed up to 960.
Fill in the details for Step 2 as follows:
Review the configurations in Steps 1 and 2, and click the Finish button.
The Message Manipulation feature comprises two primary components that work in concert to modify SIP messages. Those components are Condition Rules and Rule Tables. SIP Message rules per table include all SIP rule types: Header, Request, Status and Raw.
The Message Manipulation remove_sdp_attribute is used for the following purposes:
A Message Rule can be added to the following: all messages, all requests, all responses or selected messages.
From the Settings tab, navigate to SIP > Message Manipulation > Message Rule Table. Click the to create a Message Rule Table.
Raw Message Rule:
Raw rules allow you to manipulate any string in the entire message: request, headers, and payload. If the condition rule evaluates true, the MME will search the message for content matching the "Match Regex" and replace it with the content specified in the "Replace Regex."
The Message Rule Condition appears in a drop-down once it is created in the Condition Rule table.
Condition Rule Table is created to apply the SIP message manipulation to all the responses for the INVITE message.
From the Settings tab, navigate to SIP > Message Manipulation > Condition Rule Table. Click the to create a Message Rule Table.
For information on configuring the Survivable Branch Appliance (SBA) for Direct Routing, refer to the following link:
https://docs.microsoft.com/en-us/microsoftteams/direct-routing-survivable-branch-appliance
For the Prerequisites, Installation, and Configuring the Direct Routing SBA, refer to the following link:
For Prerequisites on Direct routing SBA, refer to the following link:
For Installation on Direct routing SBA, refer to Step 1 in the following link:
For Configuring on Direct routing SBA, refer to Step 2 in the following link:
The following checklist depicts the set of services/features covered through the configuration defined in this Interop Guide.
Sr. No. | Supplementary Features/Services | Coverage |
---|---|---|
1 | OPTIONS ping (SBC to SBA) | |
2 | OPTIONS ping (SBA to SBC) | |
3 | Basic Call from PSTN to Teams | |
4 | Basic Call from Teams to PSTN | |
5 | Call Hold & Call Resume |
Legend
Supported | |
Not Supported | |
N/A | Not Applicable |
The following items were observed during this Interop - these are either limitations, untested elements, or useful information about the Interoperability:
The caveats mentioned above do not hamper the Teams performance; instead, the Teams client user notifications in Survivability mode hamper performance.
For any support-related queries about this guide, contact your local Ribbon representative, or use the details below:
For detailed information about Ribbon products & solutions, go to:
https://ribboncommunications.com/products
For information about Microsoft Survivable Branch Appliance (SBA) & solutions, go to:
https://learn.microsoft.com/en-us/microsoftteams/direct-routing-survivable-branch-appliance
This Interoperability Guide describes a successful configuration of the Ribbon Edge 8K and Microsoft Survivable Branch Appliance.
All features and capabilities tested are detailed within this document - any limitations, notes, or observations are also recorded to provide the reader with an accurate understanding of what has been covered and what has not.
Configuration guidance is provided to enable the reader to replicate the same base setup - there may be additional configuration changes required to suit the exact deployment environment.
© 2024 Ribbon Communications Operating Company, Inc. © 2024 ECI Telecom Ltd. All rights reserved.