IP communications and multimedia services delivered directly to subscribers have become mainstream offerings, serving enterprise and residential customers alike. Session border controllers play a critical role in these access environments by enabling the service provider to deliver services across NAT and firewall devices while ensuring Quality of Service, core network security and regulatory compliance.
To address the specific needs of session control in an access environment it is critical that the following issues be supported:
- Performance capacity to deal with the demands of NAT
- Prevention of Denial of Service attacks, service theft and fraud
- Topology hiding
- SIP normalization and interworking between enterprises
- Regulatory support of Emergency Call Handling and Lawful Intercept
Performance Capacity for Network Address Translation
Subscriber access to the current set of IP based communications services - including traditional dial tone, IP Centrex, IM, UC, or call center applications - are provided via a wide range of interfaces such as a PC, an IP phone or through an adapter to a traditional telephone but almost universally, there is a requirement to pass traffic through a CPE based firewall/routing device providing Network Address Translation (NAT) to the device. Sonus has estimated that traversing NAT can increase the number of SIP messages by 4 fold or more and therefore creates significant load on the border controller securing the carriers network.
The Sonus NBS offers industry leading performance density to ensure that a carrier can painlessly scale to meet his business demands. Sonus NBS offers an elegant approach that can handle the traffic and individual policy requirements of millions of subscribers. Simple to use and expand, the NBS is designed to easily accommodate subscriber growth, reduce errors and minimize internal resources.
Robust Security
The NBS provides superior protection against Denial of Service (DoS) attacks, Registration Storms and Malformed Packet attacks as confirmed by Sonus' rigorous testing and third-party industry experts. Other security features include:
- Traffic policing,
- Topology hiding,
- Access Control
- Rogue RTP protection
- Signaling and media encryption with TLS, IPSec and Secure RTP,
- SPIT protection
- Split DMZ
Related products: