Poly Security - Firewall Traversal User guide

Category
Software
Type
User guide

This manual is also suitable for

6.0 | August 2013 | 3725-76302-001N1
Polycom
®
DMA
®
7000 System
Operations Guide
© 2009-2013 Polycom, Inc. All rights reserved.
Polycom, Inc.
6001 America Center Drive
San Jose CA 95002
USA
No part of this document may be reproduced or transmitted in any form or by any means, electronic or
mechanical, for any purpose, without the express written permission of Polycom, Inc. Under the law, reproducing
includes translating into another language or format.
As between the parties, Polycom, Inc., retains title to and ownership of all proprietary rights with respect to the
software contained within its products. The software is protected by United States copyright laws and international
treaty provision. Therefore, you must treat the software like any other copyrighted material (e.g., a book or sound
recording).
Every effort has been made to ensure that the information in this manual is accurate. Polycom, Inc., is not
responsible for printing or clerical errors. Information in this document is subject to change without notice.
ii
Trademark Information
Polycom®, the Polycom logo, and the names and marks associated with Polycoms products are trademarks
and/or service marks of Polycom, Inc., and are registered and/or common-law marks in the United States and
various other countries.
All other trademarks are the property of their respective owners.
Java is a registered trademark of Oracle America, Inc., and/or its affiliates.
Patent Information
The accompanying product may be protected by one or more U.S. and foreign patents and/or pending patent
applications held by Polycom, Inc.
End User License Agreement
Use of this software constitutes acceptance of the terms and conditions of the Polycom DMA 7000 system end-user
license agreement (EULA).
The EULA for your version is available on the Polycom Support page for the DMA 7000 system.
Polycom, Inc. iii
Contents
1 Polycom
®
DMA
®
7000 System Overview . . . . . . . . . . . . . 1
Introduction to the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
The Polycom DMA System’s Primary Functions . . . . . . . . . . . . . . . . . . 1
The Polycom DMA System’s Three Configurations . . . . . . . . . . . . . . . 5
System Capabilities and Constraints . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
System Port Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Polycom Solution Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Working in the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Third-Party Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Open Source Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
2 Polycom
®
DMA
®
System Initial Configuration Summary . . . 25
Add Required DNS Records for the Polycom DMA System . . . . . . . . . . . 26
License the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Set Up Signaling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Configure the Call Server and Optionally Create a Supercluster . . . . . . . . 30
Set Up Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Set Up MCUs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Connect to Microsoft
®
Active Directory
®
. . . . . . . . . . . . . . . . . . . . . . . . . . . 34
Set Up Conference Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Test the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
3 System Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Security Certificates Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
How Certificates Work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Forms of Certificates Accepted by the Polycom DMA System . . . . . . 38
How Certificates Are Used by the Polycom DMA System . . . . . . . . . 39
Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Certificate Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Certificate Information Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Certificate Signing Request Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 43
DMA Operations Guide
iv Polycom, Inc.
Add Certificates Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Certificate Details Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Certificate Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Install a Certificate Authority’s Certificate . . . . . . . . . . . . . . . . . . . . . . 46
Create a Certificate Signing Request in the DMA System . . . . . . . . . . 47
Install a Certificate in the DMA System . . . . . . . . . . . . . . . . . . . . . . . . . 48
Remove a Certificate from the DMA System . . . . . . . . . . . . . . . . . . . . 49
Security Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
The Consequences of Enabling Maximum Security Mode . . . . . . . . . . . . . 57
Login Policy Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Local Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
Session . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Local User Account . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Banner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Access Policy Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
Reset System Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
4 Local Cluster Configuration . . . . . . . . . . . . . . . . . . . . . . . . 67
Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Routing Configuration Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Time Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Licenses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Signaling Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Add Guest Port Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Edit Guest Port Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Add Guest Prefix Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Edit Guest Prefix Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Logging Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86
Local Cluster Configuration Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Add Licenses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Configure Signaling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88
Configure Logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91
5 Device Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
Active Calls . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Call Details Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95
Endpoints . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
Add Device Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104
Edit Device Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106
Edit Devices Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Contents
Polycom, Inc. v
Add Alias Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
Edit Alias Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
Associate User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109
Site Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109
Site Link Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 110
External Gatekeeper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111
Add External Gatekeeper Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 112
Edit External Gatekeeper Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 114
External SIP Peer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116
Add External SIP Peer Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 117
Edit External SIP Peer Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
SIP Peer Postliminary Output Format Options . . . . . . . . . . . . . . . . . . 127
Add Authentication Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131
Edit Authentication Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
Add Outbound Registration Dialog Box . . . . . . . . . . . . . . . . . . . . . . . 133
Edit Outbound Registration Dialog Box . . . . . . . . . . . . . . . . . . . . . . . 134
External H.323 SBC . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136
Add External H.323 SBC Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 137
Edit External H.323 SBC Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . 139
6 MCU Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
MCUs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
Add MCU Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 148
Edit MCU Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 153
Add Session Profile Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Edit Session Profile Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
ISDN Gateway Selection Process . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159
MCU Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
MCU Pools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163
Add MCU Pool Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
Edit MCU Pool Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
MCU Pool Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166
MCU Pool Orders . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167
Add MCU Pool Order Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
Edit MCU Pool Order Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
MCU Selection Process . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170
MCU Availability and Reliability Tracking . . . . . . . . . . . . . . . . . . . . . 171
MCU Pool Order Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 173
DMA Operations Guide
vi Polycom, Inc.
7 Integrations with Other Systems . . . . . . . . . . . . . . . . . . . 175
Microsoft
®
Active Directory
®
Integration . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Microsoft Active Directory Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177
Active Directory Integration Procedure . . . . . . . . . . . . . . . . . . . . . . . . 181
Understanding Base DN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 185
Adding Passcodes for Enterprise Users . . . . . . . . . . . . . . . . . . . . . . . . 186
About the System’s Directory Queries . . . . . . . . . . . . . . . . . . . . . . . . . 188
Microsoft Exchange Server Integration . . . . . . . . . . . . . . . . . . . . . . . . . . . . 193
Microsoft Exchange Server Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 195
Exchange Server Integration Procedure . . . . . . . . . . . . . . . . . . . . . . . . 195
Resource Management System Integration . . . . . . . . . . . . . . . . . . . . . . . . 197
Resource Management System Page . . . . . . . . . . . . . . . . . . . . . . . . . . 199
Join Resource Management System Dialog Box . . . . . . . . . . . . . . . . . 200
Resource Management System Integration Procedures . . . . . . . . . . 201
Juniper Networks SRC Integration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 203
Juniper Networks SRC Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204
Juniper Networks SRC Integration Procedure . . . . . . . . . . . . . . . . . . 204
8 Conference Manager Configuration . . . . . . . . . . . . . . . . 207
Conference Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 207
Conference Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210
Two Types of Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210
Template Priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212
About Conference IVR Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212
About Cascading . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
Conference Templates List . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216
Add Conference Template Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 217
Edit Conference Template Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 229
Select Layout Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240
Conference Templates Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . 241
IVR Prompt Sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243
Shared Number Dialing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
Add Virtual Entry Queue Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 249
Add Direct Dial Virtual Entry Queue Dialog Box . . . . . . . . . . . . . . . 250
Edit Virtual Entry Queue Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 250
Edit Direct Dial Virtual Entry Queue Dialog Box . . . . . . . . . . . . . . . . 252
9 Superclustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 253
About Superclustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 253
Contents
Polycom, Inc. vii
DMAs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255
Join Supercluster Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 258
Supercluster Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259
10 Call Server Configuration . . . . . . . . . . . . . . . . . . . . . . . . 263
About the Call Server Capabilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 264
Call Server Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 265
Domains . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 269
Dial Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 271
Test Dial Rules Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272
The Default Dial Plan and Suggestions for Modifications . . . . . . . . 273
Add Dial Rule Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 277
Edit Dial Rule Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 280
Preliminary/Postliminary Scripting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282
Script Debugging Dialog Box for Preliminaries/Postliminaries . . . 286
Sample Preliminary and Postliminary Scripts . . . . . . . . . . . . . . . . . . 287
Hunt Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 290
Add Hunt Group Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 291
Edit Hunt Group Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 292
Add Alias Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293
Edit Alias Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293
Device Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294
Add Device Authentication Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . 297
Edit Device Authentication Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . 297
Registration Policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 298
Registration Policy Scripting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 300
Script Debugging Dialog Box for Registration Policy Scripts . . . . . . 303
Sample Registration Policy Scripts . . . . . . . . . . . . . . . . . . . . . . . . . . . . 304
Prefix Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 307
Add Simplified ISDN Gateway Dialing Prefix Dialog Box . . . . . . . . 308
Edit Simplified ISDN Gateway Dialing Prefix Dialog Box . . . . . . . . 309
Edit Vertical Service Code Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 310
Embedded DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 310
History Retention Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 313
11 Site Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315
About Site Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315
Sites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 317
Site Information Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 318
Add Site Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 320
DMA Operations Guide
viii Polycom, Inc.
Edit Site Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325
Add Subnet Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 330
Edit Subnet Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 331
Site Links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 332
Add Site Link Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 333
Edit Site Link Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 333
Site-to-Site Exclusions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 334
Add Site-to-Site Exclusion Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . 335
Territories . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 335
Add Territory Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 337
Edit Territory Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 338
Network Clouds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 339
Add Network Cloud Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 340
Edit Network Cloud Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 340
Site Topology Configuration Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . 341
12 Users and Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345
User Roles Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346
Adding Users Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 347
Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 348
Add User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 351
Edit User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354
Authentication Required Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 357
Select Associated Endpoints Dialog Box . . . . . . . . . . . . . . . . . . . . . . . 357
Conference Rooms Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358
Add Conference Room Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 360
Edit Conference Room Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 365
Add Dial-out Participant Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 369
Edit Dial-out Participant Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 370
Users Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 370
Conference Rooms Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 372
Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 374
Import Enterprise Groups Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 376
Edit Group Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 377
Enterprise Groups Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 378
Login Sessions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 380
Change Password Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 381
13 System Management and Maintenance . . . . . . . . . . . . . . 383
Management and Maintenance Overview . . . . . . . . . . . . . . . . . . . . . . . . . 383
Contents
Polycom, Inc. ix
Administrator Responsibilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 384
Administrative Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 384
Auditor Responsibilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 385
Auditor Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 385
Provisioner Responsibilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 386
Recommended Regular Maintenance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 386
Dashboard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 389
Active Directory Integration Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . 390
Call Server Active Calls Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 390
Call Server Registrations Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 391
Cluster Info Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 391
Conference History – Max Participants Pane . . . . . . . . . . . . . . . . . . . 392
Conference Manager MCUs Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 392
Conference Manager Usage Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 393
Exchange Server Integration Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . 393
License Status Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 394
Resource Management System Integration Pane . . . . . . . . . . . . . . . . 394
Signaling Settings Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 395
Supercluster Status Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 395
Territory Status Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 395
User Login History Pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 396
Alerts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 396
Alert 1001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 396
Alert 1002 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 397
Alert 1003 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 397
Alert 1004 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 397
Alert 1101 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 398
Alert 1102 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 398
Alert 1103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 398
Alert 1104 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 399
Alert 2001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 399
Alert 2002 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 399
Alert 2004 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 400
Alert 2101 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 400
Alert 2102 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 401
Alert 2103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 401
Alert 2104 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 401
Alert 2105 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 402
Alert 2106 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 402
Alert 2107 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 403
DMA Operations Guide
x Polycom, Inc.
Alert 2201 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 403
Alert 2202 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 403
Alert 2203 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404
Alert 3001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404
Alert 3101 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404
Alert 3102 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 405
Alert 3103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 405
Alert 3104 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 405
Alert 3105 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 406
Alert 3201 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 406
Alert 3202 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 406
Alert 3301 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407
Alert 3302 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407
Alert 3303 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407
Alert 3304 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407
Alert 3305 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 408
Alert 3401 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 408
Alert 3403 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 408
Alert 3404 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409
Alert 3405 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409
Alert 3406 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409
Alert 3601 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 410
Alert 3602 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 410
Alert 3603 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 411
Alert 3604 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 411
Alert 3605 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 411
Alert 3606 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 411
Alert 4001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 412
Alert 4002 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 412
Alert 4003 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 412
Alert 4004 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 412
Alert 4005 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 413
Alert 5001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 413
Alert 5002 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 413
Alert 5003 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414
Alert 6001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414
Alert 7001 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414
System Log Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 415
System Logs Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 416
Troubleshooting Utilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 418
Contents
Polycom, Inc. xi
Backing Up and Restoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 420
Confirm Restore Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 422
Backup and Restore Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 422
Upgrading the Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 428
Basic Upgrade Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 429
Incompatible Software Version Supercluster Upgrades . . . . . . . . . . 434
Factors to Consider for an Incremental Supercluster Upgrade . . . . 435
Simplified Supercluster Upgrade (Complete Service Outage) . . . . . 437
Complex Supercluster Upgrade (Some Service Maintained) . . . . . . 440
Adding a Second Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 441
Expanding an Unpatched System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 441
Expanding a Patched System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 442
Replacing a Failed Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 444
Shutting Down and Restarting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 445
14 System Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 447
Alert History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 447
Call History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 448
Export History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 449
Conference History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 450
Export History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 451
Associated Calls . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 451
Conference Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 452
Property Changes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 452
Call Detail Records (CDRs) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 453
Exporting CDR Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 453
Call Record Layouts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 454
Conference Record Layouts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 460
Registration History Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 463
Registration History Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 464
Active Directory Integration Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 465
Orphaned Groups and Users Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 467
Orphaned Groups and Users Procedures . . . . . . . . . . . . . . . . . . . . . . 468
Conference Room Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 469
Exporting Conference Room Errors Data . . . . . . . . . . . . . . . . . . . . . . 470
Enterprise Passcode Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 471
Exporting Enterprise Passcode Errors Data . . . . . . . . . . . . . . . . . . . . 472
Network Usage Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 473
Exporting Network Usage Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 473
DMA Operations Guide
xii Polycom, Inc.
15 Polycom DMA System SNMP Support . . . . . . . . . . . . . . . 477
SNMP Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 477
SNMP Versions Supported . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 478
List of Available SNMP MIBs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 479
SNMP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 480
Add Notification User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 483
Edit Notification User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 484
Add Notification Agent Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . 485
Edit Notification Agent Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . 486
SNMP Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 487
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 489
Polycom, Inc. 1
1
Polycom
®
DMA
®
7000 System
Overview
This chapter provides an overview of the Polycom
®
Distributed Media
Application™ (DMA
®
) 7000 system. It includes these topics:
Introduction to the Polycom DMA System
Polycom Solution Support
Working in the Polycom DMA System
Third-Party Software
Introduction to the Polycom DMA System
The Polycom DMA system is a highly reliable and scalable video collaboration
infrastructure solution based on the Polycom
®
Proxias™ application server.
The following topics introduce you to the system:
The Polycom DMA System’s Primary Functions
The Polycom DMA System’s Three Configurations
System Capabilities and Constraints
System Port Usage
The Polycom DMA System’s Primary Functions
The primary functions of the Polycom DMA system are described briefly
below.
DMA Operations Guide Introduction to the Polycom DMA System
2 Polycom, Inc.
Conference Manager
The Polycom DMA system’s Conference Manager facilitates multipoint video
conferencing. A multipoint video conference is one in which multiple
endpoints are connected, with all participants able to see and hear each other.
The endpoints connect to a media server (Multipoint Control Unit, or MCU),
which processes the audio and video from each and sends the conference
audio and video streams back to them.
Traditionally, such multipoint conferences had to be scheduled in advance,
reserving ports on a specific MCU, in order to ensure the availability of
resources. Conference Manager makes this unnecessary.
Conference Manager uses advanced routing policies to distribute voice and
video calls among multiple MCUs, creating a single virtual resource pool. This
greatly simplifies multipoint video conferencing resource management and
uses MCU resources more efficiently.
The Polycom DMA system integrates with your Microsoft® Active
Directory®, automating the task of provisioning users with virtual meeting
rooms (VMRs), which are available for use at any time for multipoint video
conferencing. Combined with its advanced resource management, this makes
reservationless (ad hoc) video conferencing on a large scale feasible and
efficient, reducing or eliminating the need for conference scheduling.
The Polycom DMA system’s ability to handle multiple MCUs as a single
resource pool makes multipoint conferencing services highly scalable. You can
add MCUs on the fly without impacting end users and without requiring re-
provisioning. The DMA system can span a conference across two or more
MCUs (called cascading), enabling the conference to contain more participants
than any single MCU can accommodate.
The Conference Manager continually monitors the resources used and
available on each MCU and intelligently distributes conferences among them.
If an MCU fails, loses its connection to the system, or is taken out of service,
the Polycom DMA system distributes new conferences to the remaining
MCUs. Every conference on the failed MCU is restarted on another MCU
(provided there is space available). The consequences for existing calls in those
conferences depend on whether they’re H.323 or SIP:
H.323 participants are not automatically reconnected to the conference. In
order to rejoin the conference, dial-in participants simply need to redial
the same number they used for their initial dial-in. Dial-out participants
will need to be dialed out to again; the DMA system doesn’t automatically
redial out to them.
SIP participants are automatically reconnected to the conference on the
new MCU. This includes both dial-in and dial-out SIP participants. No
new dial-out is needed because the DMA system maintains the SIP call leg
to the participant and only has to re-establish the SIP call leg from the
DMA system to the MCU.
Introduction to the Polycom DMA System Polycom
®
DMA
®
7000 System Overview
Polycom, Inc. 3
Call Server
The Polycom DMA system’s Call Server provides the following functionality:
H.323 gatekeeper
SIP registrar and proxy server
H.323 <—> SIP transition gateway
Dial plan and prefix services
Device authentication
Bandwidth management
The Call Server can also be integrated with a Juniper Networks Service
Resource Controller (SRC) to provide bandwidth and QoS assurance services.
RealPresence
®
Platform API
The Polycom DMA system optionally allows an API client application,
developed by you or a third party, to access the Polycom RealPresence
®
Platform Application Programming Interface (API). This API access is licensed
separately. It provides programmatic access to the Polycom DMA system for
the following:
Provisioning
Conference control and monitoring
Call control and dial-out
Billing and usage data retrieval
Resource availability queries
The API uses XML encoding over HTTPS transport and adheres to a
Representational State Transfer (REST) architecture.
A Polycom RealPresence Resource Manager system can integrate with the
DMA system via the API. No separate license is needed in order for the
RealPresence Resource Manager system to use the API. It provides the full
programmatic access to the DMA system described above and enables users of
the RealPresence Resource Manager scheduling interface to:
Schedule conferences using the DMA system’s MCU resources.
Set up Anytime conferences. Anytime conferences are referred to as preset
dial-out conferences in the DMA system (see “Edit Conference Room
Dialog Box” on page 365)
Note
The API communicates asynchronously. Clients subscribing to event notifications
via the API must be prepared to receive notifications out of order.
DMA Operations Guide Introduction to the Polycom DMA System
4 Polycom, Inc.
SVC Conferencing Support
This version of the Polycom DMA system supports the Annex G extension of
the H.264 standard, known as H.264 Scalable Video Coding (SVC), for both
point-to-point and multipoint (VMR) calls.
SVC is sometimes referred to as layered media because the video streams
consist of a base layer that encodes the lowest available quality representation
plus one or more enhancement layers that each provide an additional quality
i
mprovement. SVC supports three dimensions of scalability: temporal (frames per
second), spatial (resolution and aspect ratio), and quality (signal-to-noise ratio).
The video stream to a device can be tailored to fit the bandwidth available and
device capabilities by adjusting the number of enhancement layers sent to the
device.
For multipoint conferencing, the MCU doesn't have to do processing-intensive
mixing and transcoding to optimize the experience for each device. Instead, it
simply passes the video stream from each device to each device, including the
enhancement layers that provide the best quality the device can support.
Polycom’s SVC solution focuses on the temporal and spatial dimensions. It
offers a number of advantages over standard AVC conferencing, including:
Improved video quality at lower bandwidths
Improved audio and video error resiliency (good audio quality with more
than 50% packet loss, good video quality with more than 25% packet loss)
Lower end-to-end latency (typically less than half that of AVC)
More efficient use of bandwidth
Lower infrastructure cost and operational expenses
Easier to provision, control, and monitor
Better security (end-to-end encryption)
Note
Integrating the Polycom RealPresence Resource Manager system with the DMA
system via the API is separate and distinct from integrating the DMA system with a
Polycom CMA or RealPresence Resource Manager system.
The former enables RealPresence Resource Manager users to obtain
information from and use functionality of the DMA system that would otherwise
be accessible only in the DMA system’s management interface.
The latter enables the DMA system to retrieve site topology and user-to-device
associations from the CMA or RealPresence Resource Manager system.
For convenience, however, when you integrate your RealPresence Resource
Manager system to the DMA system, the DMA system automatically integrates
itself back to the RealPresence Resource Manager system so that the DMA system
will have the site topology and user-to-device information that the RealPresence
Resource Manager system expects it to have.
Introduction to the Polycom DMA System Polycom
®
DMA
®
7000 System Overview
Polycom, Inc. 5
Polycom’s SVC solution is supported by the Polycom RealPresence Platform
and Environments, including the latest generation of Polycom MCUs and
RealPresence room, personal, desktop, and mobile endpoints. Existing RMX
MCUs with MPMx cards can be made SVC-capable with a software upgrade,
and doing so triples their HD multipoint conferencing capacity.
RealPresence Collaboration Server 800s MCUs support mixed-mode
(SVC+AVC) conferences. Both SVC and AVC endpoints can join the
conference, and each gets the appropriate experience: SVC endpoints get SVC
mode and get a video stream for each AVC participant; AVC endpoints get a
single Continuous Presence (CP) video stream of the participants (both AVC
and SVC) supplied by the MCU.
When the Polycom DMA system selects an MCU that doesn’t support SVC for
a conference configured for mixed mode, it starts the conference as an AVC-
only conference (all SVC-capable endpoints also support AVC). But if the
MCU supports SVC but not mixed mode (RMX 7.8), the conference fails to
start.
Refer to your RealPresence Collaboration Server or RMX documentation for
important information about the MCU’s implementation of SVC conferencing
and its configuration, limitations, and constraints.
See also:
“Introduction to the Polycom DMA System” on page 1
The Polycom DMA System’s Three Configurations
Depending on your organization’s needs, you can deploy the Polycom DMA
system in one of the following three configurations.
Two-server Cluster Configuration
The Polycom DMA system is designed to be deployed as a pair of co-located
redundant servers that share the same virtual IP address(es). The two-server
cluster configuration of the Polycom DMA system has no single point of
failure within the system that could cause the service to become unavailable.
The two servers communicate over the private network connecting them. To
determine which one should host the public virtual IP address, each server
uses three criteria:
Ability to ping its own public physical address
Ability to ping the other server’s public physical address
Ability to ping the default gateway
In the event of a tie, the server already hosting the public virtual address wins.
Failover to the backup server takes about five seconds in the event of a graceful
shutdown and about twenty seconds in the event of a power loss or other
failure. In the event of a single server failure, two things happen:
DMA Operations Guide Introduction to the Polycom DMA System
6 Polycom, Inc.
All calls that are being routed through the failed server are terminated
(including SIP calls, VMR calls, and routed mode H.323 calls). These users
simply need to redial the same number, and they’re placed back into
conference or reconnected to the point-to-point call they were in. The
standby server takes over the virtual signaling address, so existing
registrations and new calls are unaffected.
Direct mode H.323 point-to-point calls are not dropped, but the
bandwidth management system loses track of them. This could result in
overuse of the available network bandwidth.
If the failed server is the active web host for the system management
interface, the active user interface sessions end, the web host address
automatically migrates to the remaining server, and it becomes the active
web host. Administrative users can then log back into the system at the
same URL. The system can always be administered via the same address,
regardless of which server is the web host.
The internal databases within each Polycom DMA system server are fully
replicated to the other server in the cluster. If a catastrophic failure of one of
the database engines occurs, the system automatically switches itself over to
use the database on the other server.
Single-server Configuration
The Polycom DMA system is also available in a single-server configuration.
This configuration offers all the advantages of the Polycom DMA system
except the redundancy and fault tolerance at a lower price. It can be upgraded
to a two-server cluster at any time.
This manual generally assumes a redundant two-server cluster. Where there
are significant differences between the two configurations, those are spelled
out.
Superclustering
To provide geographic redundancy and better network traffic management,
up to five geographically distributed Polycom DMA system clusters (two-
server or single-server) can be integrated into a supercluster. All five clusters
can be Call Servers (function as gatekeeper, SIP proxy, SIP registrar, and
gateway). Up to three can be designated as Conference Managers (manage an
MCU resource pool to host conference rooms).
The superclustered Polycom DMA systems can be centrally administered and
share a common data store. Each cluster maintains a local copy of the data
store, and changes are replicated to all the clusters. Most system configuration
is supercluster-wide. The exceptions are cluster-specific or server-specific
items like network settings and time settings.
Introduction to the Polycom DMA System Polycom
®
DMA
®
7000 System Overview
Polycom, Inc. 7
System Capabilities and Constraints
The following capabilities and constraints apply to the entire supercluster:
Number of sites: 500
Number of subnets: 5000
Number of clusters in a supercluster: 5 (not counting an integrated
Polycom RealPresence Resource Manager or CMA system)
Number of MCUs enabled for conference rooms: 64
Number of territories enabled for conference rooms (Conference Manager
enabled): 3
Number of concurrent VMR calls: 1200 per cluster (Conference Manager),
up to 3600 total
Number of concurrent SIP<->H.323 gateway calls: 500
Size of Active Directory supported: 1,000,000 users and 1,000,000 groups
(up to 10,000 groups may be imported)
The following capabilities and constraints apply to each cluster in the
supercluster:
Number of registrations: 15000
Note
Technically, a standalone Polycom DMA system (two-server or single-server) is a
supercluster that contains one cluster. All the system configuration and other data
that’s shared across a supercluster is kept in the same data store. At any time,
another Polycom DMA system can be integrated with it to create a two-cluster
supercluster that shares its data store.
It’s important to understand the difference between two co-located servers forming
a single DMA system (cluster) and two geographically distributed DMA clusters
(single-server or two-server) joined into a supercluster.
A single two-server DMA system (cluster) has the following characteristics:
A single shared virtual IP address and FQDN, which switches from one server
to the other when necessary to provide local redundancy and fault tolerance.
A single management interface and set of local settings.
Ability to manage a single territory, with no territory management backup.
A single set of Call Server and Conference Manager responsibilities.
A supercluster consisting of two DMA clusters (single-server or two-server) has the
following characteristics:
Separate IP addresses and FQDNs for each cluster.
Separate management interfaces and sets of local settings for each cluster.
Ability for each cluster to manage its own territory, with another cluster able to
serve as backup for that territory.
Different Call Server and Conference Manager responsibilities for each territory
and thus each cluster.
DMA Operations Guide Introduction to the Polycom DMA System
8 Polycom, Inc.
Number of concurrent H.323 calls: 5000
Number of concurrent SIP calls: 5000
Total number of concurrent calls: 5000
Number of network usage data points retained: 8,000,000
Number of IRQ messages sent per second: 100
Number of history records retained per cluster:
500,000 registration history
2,000,000 registration signaling history
500,000 call history
12,500,000 call signaling history
200,000 conference history
10,000 CDR export history
System Port Usage
The table below lists the inbound ports that may be open on the Polycom DMA
system, depending on signaling and security settings, integrations, and
system configuration.
Table 1-1 Inbound port usage
Port Protocol Description
22 TCP SSH. Only available if Linux console
access is enabled (see “Security Settings”
on page 51).
53 TCP/UDP DNS. Only available if the embedded DNS
server is enabled (see “Embedded DNS”
on page 310).
80 TCP HTTP. Redirects to 443 (HTTP access is
not allowed). Disabled in maximum
security mode.
123 UDP NTP. Only available if an NTP server is
specified (see “Time Settings” on
page 75).
161 UDP SNMP. Default port; can be changed or
disabled (see “SNMP Settings” on
page 480).
443 TCP HTTPS. Redirects to 8443.
1718 UDP H.323 RAS. Default port; can be changed
(see “Signaling Settings” on page 76).
  • Page 1 1
  • Page 2 2
  • Page 3 3
  • Page 4 4
  • Page 5 5
  • Page 6 6
  • Page 7 7
  • Page 8 8
  • Page 9 9
  • Page 10 10
  • Page 11 11
  • Page 12 12
  • Page 13 13
  • Page 14 14
  • Page 15 15
  • Page 16 16
  • Page 17 17
  • Page 18 18
  • Page 19 19
  • Page 20 20
  • Page 21 21
  • Page 22 22
  • Page 23 23
  • Page 24 24
  • Page 25 25
  • Page 26 26
  • Page 27 27
  • Page 28 28
  • Page 29 29
  • Page 30 30
  • Page 31 31
  • Page 32 32
  • Page 33 33
  • Page 34 34
  • Page 35 35
  • Page 36 36
  • Page 37 37
  • Page 38 38
  • Page 39 39
  • Page 40 40
  • Page 41 41
  • Page 42 42
  • Page 43 43
  • Page 44 44
  • Page 45 45
  • Page 46 46
  • Page 47 47
  • Page 48 48
  • Page 49 49
  • Page 50 50
  • Page 51 51
  • Page 52 52
  • Page 53 53
  • Page 54 54
  • Page 55 55
  • Page 56 56
  • Page 57 57
  • Page 58 58
  • Page 59 59
  • Page 60 60
  • Page 61 61
  • Page 62 62
  • Page 63 63
  • Page 64 64
  • Page 65 65
  • Page 66 66
  • Page 67 67
  • Page 68 68
  • Page 69 69
  • Page 70 70
  • Page 71 71
  • Page 72 72
  • Page 73 73
  • Page 74 74
  • Page 75 75
  • Page 76 76
  • Page 77 77
  • Page 78 78
  • Page 79 79
  • Page 80 80
  • Page 81 81
  • Page 82 82
  • Page 83 83
  • Page 84 84
  • Page 85 85
  • Page 86 86
  • Page 87 87
  • Page 88 88
  • Page 89 89
  • Page 90 90
  • Page 91 91
  • Page 92 92
  • Page 93 93
  • Page 94 94
  • Page 95 95
  • Page 96 96
  • Page 97 97
  • Page 98 98
  • Page 99 99
  • Page 100 100
  • Page 101 101
  • Page 102 102
  • Page 103 103
  • Page 104 104
  • Page 105 105
  • Page 106 106
  • Page 107 107
  • Page 108 108
  • Page 109 109
  • Page 110 110
  • Page 111 111
  • Page 112 112
  • Page 113 113
  • Page 114 114
  • Page 115 115
  • Page 116 116
  • Page 117 117
  • Page 118 118
  • Page 119 119
  • Page 120 120
  • Page 121 121
  • Page 122 122
  • Page 123 123
  • Page 124 124
  • Page 125 125
  • Page 126 126
  • Page 127 127
  • Page 128 128
  • Page 129 129
  • Page 130 130
  • Page 131 131
  • Page 132 132
  • Page 133 133
  • Page 134 134
  • Page 135 135
  • Page 136 136
  • Page 137 137
  • Page 138 138
  • Page 139 139
  • Page 140 140
  • Page 141 141
  • Page 142 142
  • Page 143 143
  • Page 144 144
  • Page 145 145
  • Page 146 146
  • Page 147 147
  • Page 148 148
  • Page 149 149
  • Page 150 150
  • Page 151 151
  • Page 152 152
  • Page 153 153
  • Page 154 154
  • Page 155 155
  • Page 156 156
  • Page 157 157
  • Page 158 158
  • Page 159 159
  • Page 160 160
  • Page 161 161
  • Page 162 162
  • Page 163 163
  • Page 164 164
  • Page 165 165
  • Page 166 166
  • Page 167 167
  • Page 168 168
  • Page 169 169
  • Page 170 170
  • Page 171 171
  • Page 172 172
  • Page 173 173
  • Page 174 174
  • Page 175 175
  • Page 176 176
  • Page 177 177
  • Page 178 178
  • Page 179 179
  • Page 180 180
  • Page 181 181
  • Page 182 182
  • Page 183 183
  • Page 184 184
  • Page 185 185
  • Page 186 186
  • Page 187 187
  • Page 188 188
  • Page 189 189
  • Page 190 190
  • Page 191 191
  • Page 192 192
  • Page 193 193
  • Page 194 194
  • Page 195 195
  • Page 196 196
  • Page 197 197
  • Page 198 198
  • Page 199 199
  • Page 200 200
  • Page 201 201
  • Page 202 202
  • Page 203 203
  • Page 204 204
  • Page 205 205
  • Page 206 206
  • Page 207 207
  • Page 208 208
  • Page 209 209
  • Page 210 210
  • Page 211 211
  • Page 212 212
  • Page 213 213
  • Page 214 214
  • Page 215 215
  • Page 216 216
  • Page 217 217
  • Page 218 218
  • Page 219 219
  • Page 220 220
  • Page 221 221
  • Page 222 222
  • Page 223 223
  • Page 224 224
  • Page 225 225
  • Page 226 226
  • Page 227 227
  • Page 228 228
  • Page 229 229
  • Page 230 230
  • Page 231 231
  • Page 232 232
  • Page 233 233
  • Page 234 234
  • Page 235 235
  • Page 236 236
  • Page 237 237
  • Page 238 238
  • Page 239 239
  • Page 240 240
  • Page 241 241
  • Page 242 242
  • Page 243 243
  • Page 244 244
  • Page 245 245
  • Page 246 246
  • Page 247 247
  • Page 248 248
  • Page 249 249
  • Page 250 250
  • Page 251 251
  • Page 252 252
  • Page 253 253
  • Page 254 254
  • Page 255 255
  • Page 256 256
  • Page 257 257
  • Page 258 258
  • Page 259 259
  • Page 260 260
  • Page 261 261
  • Page 262 262
  • Page 263 263
  • Page 264 264
  • Page 265 265
  • Page 266 266
  • Page 267 267
  • Page 268 268
  • Page 269 269
  • Page 270 270
  • Page 271 271
  • Page 272 272
  • Page 273 273
  • Page 274 274
  • Page 275 275
  • Page 276 276
  • Page 277 277
  • Page 278 278
  • Page 279 279
  • Page 280 280
  • Page 281 281
  • Page 282 282
  • Page 283 283
  • Page 284 284
  • Page 285 285
  • Page 286 286
  • Page 287 287
  • Page 288 288
  • Page 289 289
  • Page 290 290
  • Page 291 291
  • Page 292 292
  • Page 293 293
  • Page 294 294
  • Page 295 295
  • Page 296 296
  • Page 297 297
  • Page 298 298
  • Page 299 299
  • Page 300 300
  • Page 301 301
  • Page 302 302
  • Page 303 303
  • Page 304 304
  • Page 305 305
  • Page 306 306
  • Page 307 307
  • Page 308 308
  • Page 309 309
  • Page 310 310
  • Page 311 311
  • Page 312 312
  • Page 313 313
  • Page 314 314
  • Page 315 315
  • Page 316 316
  • Page 317 317
  • Page 318 318
  • Page 319 319
  • Page 320 320
  • Page 321 321
  • Page 322 322
  • Page 323 323
  • Page 324 324
  • Page 325 325
  • Page 326 326
  • Page 327 327
  • Page 328 328
  • Page 329 329
  • Page 330 330
  • Page 331 331
  • Page 332 332
  • Page 333 333
  • Page 334 334
  • Page 335 335
  • Page 336 336
  • Page 337 337
  • Page 338 338
  • Page 339 339
  • Page 340 340
  • Page 341 341
  • Page 342 342
  • Page 343 343
  • Page 344 344
  • Page 345 345
  • Page 346 346
  • Page 347 347
  • Page 348 348
  • Page 349 349
  • Page 350 350
  • Page 351 351
  • Page 352 352
  • Page 353 353
  • Page 354 354
  • Page 355 355
  • Page 356 356
  • Page 357 357
  • Page 358 358
  • Page 359 359
  • Page 360 360
  • Page 361 361
  • Page 362 362
  • Page 363 363
  • Page 364 364
  • Page 365 365
  • Page 366 366
  • Page 367 367
  • Page 368 368
  • Page 369 369
  • Page 370 370
  • Page 371 371
  • Page 372 372
  • Page 373 373
  • Page 374 374
  • Page 375 375
  • Page 376 376
  • Page 377 377
  • Page 378 378
  • Page 379 379
  • Page 380 380
  • Page 381 381
  • Page 382 382
  • Page 383 383
  • Page 384 384
  • Page 385 385
  • Page 386 386
  • Page 387 387
  • Page 388 388
  • Page 389 389
  • Page 390 390
  • Page 391 391
  • Page 392 392
  • Page 393 393
  • Page 394 394
  • Page 395 395
  • Page 396 396
  • Page 397 397
  • Page 398 398
  • Page 399 399
  • Page 400 400
  • Page 401 401
  • Page 402 402
  • Page 403 403
  • Page 404 404
  • Page 405 405
  • Page 406 406
  • Page 407 407
  • Page 408 408
  • Page 409 409
  • Page 410 410
  • Page 411 411
  • Page 412 412
  • Page 413 413
  • Page 414 414
  • Page 415 415
  • Page 416 416
  • Page 417 417
  • Page 418 418
  • Page 419 419
  • Page 420 420
  • Page 421 421
  • Page 422 422
  • Page 423 423
  • Page 424 424
  • Page 425 425
  • Page 426 426
  • Page 427 427
  • Page 428 428
  • Page 429 429
  • Page 430 430
  • Page 431 431
  • Page 432 432
  • Page 433 433
  • Page 434 434
  • Page 435 435
  • Page 436 436
  • Page 437 437
  • Page 438 438
  • Page 439 439
  • Page 440 440
  • Page 441 441
  • Page 442 442
  • Page 443 443
  • Page 444 444
  • Page 445 445
  • Page 446 446
  • Page 447 447
  • Page 448 448
  • Page 449 449
  • Page 450 450
  • Page 451 451
  • Page 452 452
  • Page 453 453
  • Page 454 454
  • Page 455 455
  • Page 456 456
  • Page 457 457
  • Page 458 458
  • Page 459 459
  • Page 460 460
  • Page 461 461
  • Page 462 462
  • Page 463 463
  • Page 464 464
  • Page 465 465
  • Page 466 466
  • Page 467 467
  • Page 468 468
  • Page 469 469
  • Page 470 470
  • Page 471 471
  • Page 472 472
  • Page 473 473
  • Page 474 474
  • Page 475 475
  • Page 476 476
  • Page 477 477
  • Page 478 478
  • Page 479 479
  • Page 480 480
  • Page 481 481
  • Page 482 482
  • Page 483 483
  • Page 484 484
  • Page 485 485
  • Page 486 486
  • Page 487 487
  • Page 488 488
  • Page 489 489
  • Page 490 490
  • Page 491 491
  • Page 492 492
  • Page 493 493
  • Page 494 494
  • Page 495 495
  • Page 496 496
  • Page 497 497
  • Page 498 498
  • Page 499 499
  • Page 500 500
  • Page 501 501
  • Page 502 502
  • Page 503 503
  • Page 504 504
  • Page 505 505
  • Page 506 506
  • Page 507 507
  • Page 508 508
  • Page 509 509
  • Page 510 510

Poly Security - Firewall Traversal User guide

Category
Software
Type
User guide
This manual is also suitable for

Ask a question and I''ll find the answer in the document

Finding information in a document is now easier with AI