2 direct sip with security and media bypass setup, Direct sip with security and media bypass setup – AASTRA MX-ONE_A700_MS Lync 2010 Quick Setup Guide User Manual
Page 14
14 (19)
• Select the Encryption support level, in this case, Not supported
Figure 12 - Encryption support level
• Commit all changes
Now the setup is concluded, assign users with the Policy created previously and test the integration
making calls between the systems.
Please check Enable Users for Enterprise Voice setup in the link below:
4.2.2 Direct SIP with security and Media Bypass setup
The figure below shows the Direct SIP with security and Media Bypass configuration used in this
guide:
MX-ONE or A700 V.4.1 SP3
IP= 192.168.222.84
FQDN= mxone-lync.as.zr.zeruela.lab.se
PSTN / PLMN
or SIP operator
ISDN or SIP Route
SIP Trunk
TLS
Lync Server and Mediation Server
IP= 192.168.222.90
FQDN= lync-stand.as.zr.zeruela.lab.se
SIP
TL
S
Lync
Client
Microsoft® DC,AD, CA and DNS Server
IP= 192.168.222.45
FQDN= lync-infra.as.zr.zeruela.lab.se
SIP Traffic: TCP or TLS
SIP Traffic: TLS
Figure 13 - Security and Media bypass detailed signaling
1) MX-ONE Direct SIP with security and Media Bypass setup
The following setup needs to be done in MX-ONE in order to configure Direct SIP with security
(encryption), please note that only SIP Route definitions are showed.
Note that MX-ONE FQDN needs to be properly defined in the DNS Server.
When using security an appropriate certificate needs to be installed in MX-ONE as well as the
encryption licenses.
Note that TLS/SRTP security is required for Media bypass functionality.