officeserv 7400 samsung electronics co., ltd. proposed network configuration

OfficeServ 7400

Samsung Electronics Co., Ltd.

Proposed Network ConfigurationProposed Network Configuration

© Samsung Electronics Co., Ltd. 2

ContentsContents

WAN Configuration WAN Configuration

VoIP Network ConfigurationVoIP Network Configuration

Switch/Router ConfigurationSwitch/Router Configuration

Security ConfigurationSecurity Configuration


WAN ConfigurationWAN Configuration


WAN interface on the SerialWAN interface on the Serial

ISP

IP Telephony

Management

Data Service

CSU/DSU

V.35/HSSI

10.0.0.x

10.0.0.x


WAN1 and WAN2 interface with the ISPWAN1 and WAN2 interface with the ISP

Data Service

IP Telephony

DSL DSLDSL Internet

Modem Modem

MGI

LP40

MP40

Static61.77.137.81/2

5

Dynamic VDSL

Gateway10.0.0.1

Media Gateway10.0.0.3

Call server10.0.0.2


System to SystemSystem to System

Internet

IP Phone

165.213.109.1003202

165.213.109.1003202

Digital Phone

2001

IP Phone

10.0.0.20(DHCP)3201

#1IP : 61.77.207.154MP40 : 10.0.0.2MGI : 10.0.0.3

IP Phone

61.77.207.150(DHCP)3201

Digital Phone

2001

#2IP : 61.77.137.81MP40 : 192.168.0.2MGI : 192.168.0.3

Site #A

Site #B

ADSL

VDSLVDSL

ADSL


DSL ConfigurationDSL Configuration

GWIM

GSIM

GPLIMGPLIM

WLI

Management Data Service IP Telephony

DSLAMModem

APWIP5000M

PDA

Laptop PC

ISP

ADSL/VDSL


Home

Public IP PhonePublic IP Phone

LP40

MP40

MGI64

GWIM

GPLIM 16DLI

Internet

VoIP Phone

3201

Digital Phone

2001

192.168.0.1003202

IP : 10.0.0.15Public IP : 165.213.89.178

IP : 10.0.0.10Public IP : 165.213.89.178

WAN : 165.213.89.178

LAN : 10.0.0.x

LAN : 10.0.0.100


VoIP ConfigurationVoIP Configuration


NAPT for VoIP ServiceNAPT for VoIP Service

MGI(10.0.0.3)

MP(10.0.0.2)

MP40

MGI

165.213.109.186:6000U

165.213.109.186:30000~30031U

10.0.0.2:6000U10.0.0.2:9000U

10.0.0.3:30000 ~30031U

NAPT

Home

165.213.109.1003202

165.213.109.186:9000U

Public Fixed IP : 165.213.109.186Inter Private IP : 10.0.0.1/24

165.213.109.1003202

IP phone

10.0.0.203201

Digital Phone

2001


SIP ALGSIP ALG

IP Phone PC SIP

SIP standard

SIP

SIP standard

Internet

SIP

SIP standard

ADSL

LAN : 192.168.1.1

WAN : 165.213.89.218

IP : 192.168.1.180

IP : 192.168.1.181

IP : 168.219.149.225For standard SIP Phone


GWIM and GSIM QoSGWIM and GSIM QoS

VoIP Group

10.0.0.0/24

APWIP5000M

PDA

Laptop PC

Internet

Auto-QoSAuto-Firewall (TBD)Auto-NAPT Service

GWIM-. HTBQ

-. SPQ

GSIM-. Classification, DSCP Marking,

-. Policing, Buffer Management (WRED-like)

-. IEEE 802.1p marking, CoS Mapping

-. DiffServ, Scheduling


GPLIM QoSGPLIM QoS

GPLIM

GWIM

IP phone with 5 value of 802.1p tag field

MP40

MGI

Internet

IP phone with 1 value of 802.1p tag field

Port based QoS (using port priority)

GPLIM-. CoS Mapping, Scheduling


Switch/Router ConfigurationSwitch/Router Configuration


Layer 3 RoutingLayer 3 Routing

IP Phones

PC

Server Farm

External Optical Cable : Sx,LxFail over & Load balancing

External Optical Cable : Sx,Lx

10/100Base-Tx with PoEMax. 2 PLIM per cabinet (24ports)

InternetPSTN

1000Base-Sx/Lx

V.35/HSSI

• GWIM : L3 Routing, QoS, Firewall/IDS, VoIP Service• GSIM : L3 Routing, QoS, VoIP Service• GPLIM : QoS, PoE

• GWIM : L3 Routing, QoS, Firewall/IDS, VoIP Service• GSIM : L3 Routing, QoS, VoIP Service• GPLIM : QoS, PoE

GWIM

GSIM

GPLIMGPLIM

GPLIM


IP Phones

PC

Layer 3 Routing with NATLayer 3 Routing with NAT

InternetPSTN

V.35/HSSI

DMZ

Mail Server Web Server

• GWIM : NAT/PT, DMZ, QoS, VoIP Service• GSIM : L3 Routing, QoS, VoIP Service• GPLIM : QoS, PoE

• GWIM : NAT/PT, DMZ, QoS, VoIP Service• GSIM : L3 Routing, QoS, VoIP Service• GPLIM : QoS, PoE

Server Farm

External Optical Cable : Sx,LxFail over & Load balancing

External Optical Cable : Sx,Lx

10/100Base-Tx with PoEMax. 2 PLIM per cabinet (24ports)

1000Base-Sx/Lx

GWIM

GSIM

GPLIMGPLIM

GPLIM


Server Access Group

Two Internal NetworkTwo Internal Network

Training Center

PC192.168.1.101

PC192.168.1.102

Server192.168.1.10

R&D Center

PC192.168.2.101

PC192.168.2.102

PC192.168.2.103

DMZ

Web Server FTP Server

192.168.0.x

Internet

LAN Configuration192.168.1.1/24192.168.2.1/24

WAN Configuration165.213.97.100192.168.1.1 (GSIM #1)192.168.2.1 (GSIM #2)


Layer2 Switching and RouterLayer2 Switching and Router

PC

IP Phones

Internet

• GWIM : NAT/PT, DMZ, IDS, QoS, VoIP Service• GPLIM : QoS, PoE• GWIM : NAT/PT, DMZ, IDS, QoS, VoIP Service• GPLIM : QoS, PoE

10/100Base-Tx with PoEMax. 4 GPLIM per cabinet (48ports)Max. 3 PLIM per cabinet (48ports)

GWIM

GPLIM

GPLIM


VLAN ConfigurationVLAN Configuration

GPLIM/GSIM

GWIM

PC Group

VoIP GroupTest Group

MP40

MGI

VLAN Config. (GPLIM) -. Port Based -. Tag Based -. MAC Based

Internet

VLAN Config. (GSIM) -. Port Based -. Tag Based -. IP-Subnet Based


PC

Configures OSPF Configures OSPF

PC

192.168.30.0/24 172.16.0.0/24

30.0.0.0/2410.0.0.0/2410.0.0.100 30.0.0.100

7400 A router ospf 1 redistribute connected subnets network 192.168.30.0 0.0.0.255 area 0

7400 B router ospf 1 redistribute connected network 172.16.0.0 0.0.0.255 area 0 network 192.168.30.0 0.0.0.255 area 0

DataServer >> enable>> configure terminal>> router ospf >> network 172.16.0.0/24 area 0>> redistribute kernel >> redistribute connected

7400 A router ospf 1 redistribute connected subnets network 192.168.30.0 0.0.0.255 area 0

7400 B router ospf 1 redistribute connected network 172.16.0.0 0.0.0.255 area 0 network 192.168.30.0 0.0.0.255 area 0

DataServer >> enable>> configure terminal>> router ospf >> network 172.16.0.0/24 area 0>> redistribute kernel >> redistribute connected

7400 A Routing TableC 192.168.30.0/24 is directly connected, Serial0 172.16.0.0/24 is subnetted, 1 subnetsO 172.16.0.0 [110/49] via 192.168.30.2, 00:01:11, Serial0 10.0.0.0/24 is subnetted, 1 subnetsC 10.0.0.0 is directly connected, FastEthernet0 30.0.0.0/24 is subnetted, 1 subnetsO E2 30.0.0.0 [110/20] via 192.168.30.2, 00:01:11, Serial0

DataServer Routing TableO>* 10.0.0.0/24 [110/20] via 172.16.0.1, eth0, 00:02:31C>* 30.0.0.0/24 is directly connected, eth1C>* 127.0.0.0/8 is directly connected, loO 172.16.0.0/24 [110/10] is directly connected, eth0, 00:03:10C>* 172.16.0.0/24 is directly connected, eth0O>* 192.168.30.0/24 [110/74] via 172.16.0.1, eth0, 00:02:32

7400 A Routing TableC 192.168.30.0/24 is directly connected, Serial0 172.16.0.0/24 is subnetted, 1 subnetsO 172.16.0.0 [110/49] via 192.168.30.2, 00:01:11, Serial0 10.0.0.0/24 is subnetted, 1 subnetsC 10.0.0.0 is directly connected, FastEthernet0 30.0.0.0/24 is subnetted, 1 subnetsO E2 30.0.0.0 [110/20] via 192.168.30.2, 00:01:11, Serial0

DataServer Routing TableO>* 10.0.0.0/24 [110/20] via 172.16.0.1, eth0, 00:02:31C>* 30.0.0.0/24 is directly connected, eth1C>* 127.0.0.0/8 is directly connected, loO 172.16.0.0/24 [110/10] is directly connected, eth0, 00:03:10C>* 172.16.0.0/24 is directly connected, eth0O>* 192.168.30.0/24 [110/74] via 172.16.0.1, eth0, 00:02:32

7400 A

7400 B

7400 C


DHCP ConfigurationDHCP Configuration

IP Phone PC

LAN : 10.0.0.1/24

PC

PC

Internet

ADSL

WAN : 165.213.109.186/24


Security ConfigurationSecurity Configuration


Configure a IDSConfigure a IDS

IP Telephony Data Service

Internet

Mail server

Un-trusted Network

Management

165.213.87.230

165.213.109.0165.213.88.100

165.213.89.238

10.0.0.010.0.0.0


Configure a DMZConfigure a DMZ

DMZ

Web Server FTP Server

IP Telephony

Management

DSLAMModem

ISP

165.213.97.100

10.0.0.x10.0.0.x

192.168.0.x


VPN ConfigurationVPN Configuration

IPSec and IKE (Internet Key Exchange)

#1IP : 165.213.109.185/2410.0.0.1/24

#1IP : 165.213.89.245/24192.168.1.1

Tunneling (IPSec, PPTP, L2TP)

Samsung Electronics Co., Ltd.

officeserv 7400 samsung electronics co., ltd. proposed network configuration

Documents

samsung electronics

private ip

system internet ip phone

standard sip phone slide

gplim qos gplim gwim

digital phone

u public fixed ip

x slide