Method and system for implementing and managing a multimedia access network device
First Claim
1. A method for processing at least one session initiation protocol (SIP) or H.323 packet over a network, comprising the steps of:
- receiving said at least one SIP or H.323 packet; and
mapping said at least one SIP or H.323 packet from a public internet protocol (IP) address field to a private IP address field and a public transaction identification (TID) number to a private port TID number using an application layer gateway (ALG) database;
wherein said mapping step comprises the steps of;
receiving said at least one SIP or H.323 packet from a wide area network (WAN) comprising said public IP address field;
storing said public IP address field and said public TID number in said ALG database and assigning said private TID number and inserting said private TID number into said ALG database;
determining whether said public TID number and said mapped private TID number and said mapped private IP address field exists in said ALG database, wherein if said public TID number or said mapped private TID number or said mapped private IP address field does not exist in said ALG database, then said at least one SIP or H.323 packet is dropped; and
wherein if said public TID number or said mapped private TID number or said mapped private IP address field does exist in said ALG database, then replacing said public IP address field with said private IP address field and replacing said public TID number with said private TID number, and transmitting said at least one SIP or H.323 packet to a local area network (LAN) comprising said private IP address field.
4 Assignments
0 Petitions
Accused Products
Abstract
In a complete network-in-a-box system acting as an enterprise network demarcation point, packets such as voice, video and data packets, are routed over common network connections, such as LAN and WAN. The packets are mapped from a public address field (such as an IP address) and port number to a private address field and port number, the mapping process typically being handled by a NAT (Network Address Translation). The packets are also prioritized, by marking the packets for priority queuing and routing, and configuring the bandwidths of the WAN traffic and the voice traffic to predetermined quantities and configuring the address fields of the voice devices. Simultaneous transmission of the various packets can be limited to predetermined quantities, typically by utilizing a CAC (Client Access Control). Secure firewalls are also included as well as a performance test client application that provides a defined workload generated across the WAN interface for capacity planning measurements and allows remote monitoring of the QoS (Quality of Service) data, such as latency, jitter, lost packets and MOS scores. Optionally, a simple, common remote management interface is included, allowing service providers to configure, upgrade and manage the system. Additionally, address fields can be provided to voice, video or data devices attached to a LAN port. VPN authentication and encrypted sessions can be tunneled through the firewall for access to an internal network by using a VPN terminator. For power outages and other emergency purposes, additional ports that connect to PSTN (Public Switched Telephone Network) analog telephone lines as well as other analog telephones or devices, can be provided. Another advantageous element is that most of the above components or features may be enabled or disabled.
155 Citations
1 Claim
-
1. A method for processing at least one session initiation protocol (SIP) or H.323 packet over a network, comprising the steps of:
- receiving said at least one SIP or H.323 packet; and
mapping said at least one SIP or H.323 packet from a public internet protocol (IP) address field to a private IP address field and a public transaction identification (TID) number to a private port TID number using an application layer gateway (ALG) database;wherein said mapping step comprises the steps of;
receiving said at least one SIP or H.323 packet from a wide area network (WAN) comprising said public IP address field;
storing said public IP address field and said public TID number in said ALG database and assigning said private TID number and inserting said private TID number into said ALG database;
determining whether said public TID number and said mapped private TID number and said mapped private IP address field exists in said ALG database, wherein if said public TID number or said mapped private TID number or said mapped private IP address field does not exist in said ALG database, then said at least one SIP or H.323 packet is dropped; and
wherein if said public TID number or said mapped private TID number or said mapped private IP address field does exist in said ALG database, then replacing said public IP address field with said private IP address field and replacing said public TID number with said private TID number, and transmitting said at least one SIP or H.323 packet to a local area network (LAN) comprising said private IP address field.
- receiving said at least one SIP or H.323 packet; and
Specification