Aspen Solutions. Branch Office IP Telephony: Improving the Reliability of Voice over Virtual Private Networks. Introduction TECHNICAL NOTE



Similar documents
Non-Stop VoIP. 4 Examples of VoIP/SIP Survivability in the Small-to-Medium Enterprise

Aspen Solutions. A Sure Bet: Implementing High Availability Internet. Application Availability and Intelligent Traffic Management TECHNICAL NOTE

VoIP / SIP Planning and Disclosure

Multi Protocol Label Switching (MPLS) is a core networking technology that

Network Management for Common Topologies How best to use LiveAction for managing WAN and campus networks

Disaster Recovery Design Ehab Ashary University of Colorado at Colorado Springs

A Link Load Balancing Solution for Multi-Homed Networks

WHITEPAPER MPLS: Key Factors to Consider When Selecting Your MPLS Provider

MPLS: Key Factors to Consider When Selecting Your MPLS Provider Whitepaper

IVCi s IntelliNet SM Network

VoIP Reliability in Managed Service Deployments

QoS (Quality of Service)

Using IPsec VPN to provide communication between offices

Network Connection Considerations for Microsoft Response Point 1.0 Service Pack 2

Configuration Example

WHITE PAPER: Broadband Bonding for VoIP & UC Applications. In Brief. mushroomnetworks.com. Applications. Challenge. Solution. Benefits.

Networking Topology For Your System

Implementing MPLS VPN in Provider's IP Backbone Luyuan Fang AT&T

Avaya ExpertNet Lite Assessment Tool

UIP1868P User Interface Guide

PREPARED FOR ABC CORPORATION

Voice Over IP. MultiFlow IP Phone # 3071 Subnet # Subnet Mask IP address Telephone.

ehealth and VoIP Overview

Voice over IP (VoIP) for Telephony. Advantages of VoIP Migration for SMBs BLACK BOX blackbox.com

Introduction. Technology background

MPLS: Key Factors to Consider When Selecting Your MPLS Provider

Multi-Link - Firewall Always-on connectivity with significant savings

Intermedia Cloud Softphone. User Guide

NEWT Managed PBX A Secure VoIP Architecture Providing Carrier Grade Service

Transport and Network Layer

VPN Only Connection Information and Sign up

White Paper. McAfee Multi-Link. Always-on connectivity with significant savings

Application Notes. Introduction. Contents. Managing IP Centrex & Hosted PBX Services. Series. VoIP Performance Management. Overview.

High Performance VPN Solutions Over Satellite Networks

Truffle Broadband Bonding Network Appliance

QoS issues in Voice over IP

Virtual Leased Line (VLL) for Enterprise to Branch Office Communications

High Availability, Security and Peak Performance in Hosted VoIP Deployments

Private Cloud Solutions Virtual Onsite Data Center

Chapter 4 Connecting to the Internet through an ISP

PRASAD ATHUKURI Sreekavitha engineering info technology,kammam

Requirements of Voice in an IP Internetwork

Voice over IP Networks: Ensuring quality through proactive link management

November Defining the Value of MPLS VPNs

Voice Over IP Performance Assurance

Broadband Phone Gateway BPG510 Technical Users Guide

Optimizing Converged Cisco Networks (ONT)

Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications

Optimizing Networks for NASPI

STANDPOINT FOR QUALITY-OF-SERVICE MEASUREMENT

Achieving High Quality Voiceover-IP Across WANs With Talari Networks APN Technology

Redundancy & the Netnod Internet Exchange Points

VOIP THE ULTIMATE GUIDE VERSION /23/2014 onevoiceinc.com

ASA/PIX: Load balancing between two ISP - options

GR2000: a Gigabit Router for a Guaranteed Network

NEFSIS DEDICATED SERVER

Quality of Service. Traditional Nonconverged Network. Traditional data traffic characteristics:

IP SLAs Overview. Finding Feature Information. Information About IP SLAs. IP SLAs Technology Overview

IP Telephony Basics. Part of The Technology Overview Series for Small and Medium Businesses

Recommended IP Telephony Architecture

The Next Generation of Wide Area Networking

SSVVP SIP School VVoIP Professional Certification

JOB READY ASSESSMENT BLUEPRINT COMPUTER NETWORKING FUNDAMENTALS - PILOT. Test Code: 4514 Version: 01

ICTTEN6172A Design and configure an IP- MPLS network with virtual private network tunnelling

Optimizing Converged Cisco Networks (ONT)

Best Effort gets Better with MPLS. Superior network flexibility and resiliency at a lower cost with support for voice, video and future applications

Virtual Office. Network Tests. Revision x8, Inc O'Nel Drive San Jose, CA Phone: Fax:

LinkProof And VPN Load Balancing

Enterprise Edge Communications Manager. Data Capabilities

The Key to Cost-Effective WAN Optimization - White Paper

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

Cisco Which VPN Solution is Right for You?

Improving Quality of Service

Course Contents CCNP (CISco certified network professional)

Voice Over IP is it hype or can it work for me? By American Business Communication Inc.

WAN Performance Analysis A Study on the Impact of Windows 7

EXINDA NETWORKS. Deployment Topologies

Application Note. Pre-Deployment and Network Readiness Assessment Is Essential. Types of VoIP Performance Problems. Contents

Internet Firewall CSIS Packet Filtering. Internet Firewall. Examples. Spring 2011 CSIS net15 1. Routers can implement packet filtering

Good VoIP vs. Bad VoIP

Voice Over Internet Protocol (VoIP) Issues and Challenges William McCrum

CS/ECE 438: Communication Networks. Internet QoS. Syed Faisal Hasan, PhD (Research Scholar Information Trust Institute) Visiting Lecturer ECE

Getting Started KX-TDA5480

White Paper: Broadband Bonding with Truffle PART I - Single Office Setups

Multi- Path Networking Is a Key to Maximizing Cloud Value

WAN Data Link Protocols

Multi-protocol Label Switching

Real-time apps and Quality of Service

How To: Diagnose Poor VoIP Calls through diagnostics.

Customer Network Assessment

Cisco Networks (ONT) 2006 Cisco Systems, Inc. All rights reserved.

How To Deliver High Quality Telephony Over A Network

Understanding Latency in IP Telephony

IOS NAT Load Balancing for Two ISP Connections

Network-Wide Class of Service (CoS) Management with Route Analytics. Integrated Traffic and Routing Visibility for Effective CoS Delivery

Data Networking and Architecture. Delegates should have some basic knowledge of Internet Protocol and Data Networking principles.

Mesh VPN Link Sharing (MVLS) Solutions

An Introduction to SIP

Transcription:

Aspen Solutions Branch Office IP Telephony: Improving the Reliability of Voice over Virtual Private Networks TECHNICAL NOTE Introduction IP PBX and IP phones are increasingly being deployed by small and mid-size businesses to improve productivity and realize cost-savings. A common topology is to connect the branch offices together using IPSEC VPN tunnels and IPSEC VPN hardware, as in Fig 1 below. Inter-office dialing, inbound direct dialing or call transfers based on 4-digit extension numbers so essential to productivity are therefore transported over these IPSEC VPN tunnels. The VPN hardware typically acts as both security firewall and router for the branch office, and very often is configured to allow the branch office to send and receive traffic directly to the Internet (Web, email etc). It is a common misconception that the advanced routing protocols (such as OSPF) run between the VPN routers are sufficient to deal with unpredictable failure modes in Internet traffic flows. Nothing could be further from the truth. This technical note explains the problem, and how Aspen Networks application switches solve it. Fig 1 Branch Office IP Telephony 1

Reliability Problems The issue of reliability is all too often glossed over. Using IPSEC VPN tunnels over ISP links does save money and harmonize use of Internet access links. The tradeoff however is decreased reliability and more unpredictability a feature of Internet transport many people often forget. These failure modes have been widely documented [1], [2]. While some of this decreased reliability and unpredictability is tolerable for data traffic, in the case of voice over IP traffic it is fatal. For example, voice quality breaks down sharply once the round-trip delay between 2 phones exceeds about 200 milliseconds. Other factors that can degrade voice-quality are transient congestion, packet loss, and jitter. Because the Internet is a connected system of autonomous service providers (ISPs) routing glitches and failures inside a single ISP often percolate through the system giving rise to transient problems that will affect voice traffic adversely. A study by MERIT/University of Michigan [1] documented over 45,000 routing incidents over a 16-month study period. To understand why this affects VPN paths, it is important to understand how VPN routers function. A routing protocol such as OSPF (or RIP) is configured on the VPN router, and paths are configured between the IP subnets at each office. In Fig 1 (above) and Fig 2 (below) the enterprise is multi homed to 2 ISPs at each site, labeled ISP 1 and 2. Therefore 4 VPN tunnels are configured between the 2 offices shown in red, blue, black and green. To the routing protocols, each tunnel path is treated as a single hop with a fixed cost, even though in reality it traverses a varying number of diverse ISP hops or clouds along the way. Let us assume the best path is picked by OSPF as the green path; next consider what can happen to this green path when routing instability occurs. Fig 2 OSPF and RIP Costs Unaffected by Path Degrade 2

In Fig 2 above, a typical routing degrade situation is shown. Invisible to the VPN routers, the internal Internet paths have changed due to an upstream ISP of ISP 1 (shown in red) having an intermittent routing failure or fiber cut. The green path now traverses 8 hops instead of 4 hops in Fig 1 when no routing problem existed. Unfortunately, the VPN routers do not notice any change because the tunnel is viewed as a single hop always. The routing protocol on the VPN router has no visibility into the real-time path being used. And so these routers continue to send packets down the green path, even though that path is now degraded. There are 2 essential problems with the routing protocol approach: 1. There is no sensitivity to path degrade, especially as it affects voice over IP traffic 2. While there is sensitivity to hard path failures, in the best case (OSPF) these typically take about 10 12 seconds to detect and correct during which time all existing phone calls will break. Unpredictable Data Flow Problems Sometimes activity on the part of users or data applications inside an enterprise can result in large data flows occurring at unpredictable intervals, severely degrading voice quality. An example is when multiple large file transfers occur on a VPN link at the same time as an IP telephone call. Without an Aspen switch and only VPN routers operating on OSPF or RIP, the voice and data traffic will usually collide to the detriment of voice quality. One hears anectodes in the home use of VoIP, such as heavy music downloads interrupting that Vonage phone call that Dad is making; these problems are similar in corporate networks. Jitter introduced by lots of large data packets in the presence of small voice packets often causes voice quality to degrade. In the next section, we explain how Aspen Networks VoIP-aware application switch technology addresses these kinds of traffic problems. This results in higher availability and predictable quality for 4-digit VoIP applications. Aspen VoIP Real Time Responsiveness Recovery in Milliseconds - Voice Calls never Break Application switching as defined and implemented by Aspen Networks has 2 components (a) awareness of each ISP path by on-going and detailed measurements in real time (b) awareness of the nature of the application, in this case 4-digit dialed voice traffic encrypted in IPSEC. Real time measurements of all ISP paths are continuously sampled packet loss, delay, jitter, hop-count, link loading in each direction, and available bit rate in each direction. ISP path selection is a function of these real time measurements. One critical feature is the fine-grained measurements in real time, configurable in 100 milli-second units of granularity. This means that unlike OSPF or RIP, existing voice over IP calls managed by an Aspen switch do not break when there are transient routing failures on the Internet. Typical recovery times in the range of 200 to 500 milli-seconds, depending on configuration. In the presence of transient failures and microburst outages on the BGP-protocol dominated Internet, as widely documented in various studies [1], [2] Aspen s Real Time Responsiveness feature set enables smooth voice performance with no interruptions. 3

Rapid Response to Path Degrades Voice and Data Flow Separation Because path measurements are done at the millisecond level granularity by the Aspen switch, any problem caused by transient routing, or intermittent noise or interference on wireless links, is detected and corrected in milliseconds. The problem of unpredictable and large data flows adversely affecting voice is also solved. When voice activity is not present, the Aspen switch can load balance data traffic over each of the 4 VPN tunnel paths shown. This is the normal case, as voice calls do not happen all the time. When voice is detected however, the Aspen switch ensures that voice flows take the best path, while data flows are shunted to avoid colliding (and thereby causing jitter) with the voice flows. When the voice flows cease, the data flows are re-optimized and allowed to take any path again, until such time when new voice flows detected. This is depicted in Fig 4. Configuration and Network Diagram Fig 3 Solution with Aspen 365-HQ and 365-BRANCH switches VPN tunnel IP addresses and Differentiated Services (DS) byte markers in the IP packet header are used to identify encrypted voice over IPSEC VPN to the Aspen switch.. For example, a Microsoft NetMeeting audio/video conference between 2 sites can be marked off as a preferred application flow that is encrypted and handled with special treatment by the Aspen switch. 4

Static and Dynamic VoIP Flow Policies Both static and dynamic polices can be set. For example, a static voice policy can be used to always steer VoIP traffic via specific ISPs as long as they have no path failures. Static policies can be beneficially used when the customer has paid for Premium IP service links specially groomed for VoIP traffic. For example, if ISP 1 at each of the 2 locations is ATT and specially groomed T1 Internet service links are being purchased, the enterprise can choose to steer voice traffic over these preferred links. An inexpensive DSL backup ISP can be used as ISP 2 in each location. For smaller businesses or enterprises that do not care to tinker with policies, the default policy used by the Aspen switch is dynamic path adjustment based on real time transient conditions, as measured by the measurement and control processor on the Aspen switch. In the dynamic case, path adjustment is a function of many variables, including round-trip time, hop-count through the Internet, packet loss rate on the path, available bit rate on each link and path jitter. Fig 4 Voice and Data follow Separate Paths 5

Conclusion References This technical note has explained how Aspen Networks voice application switching technology can be utilized in achieving high availability for 4-digit branch office dialing and IP PBX applications. Using real time measurements sampled in millisecond intervals voice flows are correctly steered through the Internet over the most optimal paths. The real time measurements include available bit rate loading, round-trip time, packet loss rates, voice-stream jitter and tunnel path hop counts. When Internet transients occur, the hop count of any VPN path changes. By being ISP aware, the Aspen switches can actually detect that a transient problem has occurred within milliseconds, and respond in 200 500 milliseconds. Dynamic or static voice preference policies can be set by the user, accommodating a variety of enterprise needs in terms of Internet Service Provider selection and management. [1] Delayed Internet Routing Convergence, Craig Labovitz et al www.nanog.org/mtg- 9910/ppt/labovit1/powerpoint.ppt [2] The Coming Era of Absolute Availability, Shing Yin and Ken Twist, RHK Advisory Services May 2003 download at http://www.chiaro.com/proof_points/index.jsp 3777 Stevens Creek Blvd., Suite 330 Santa Clara, CA 95051 (408) 246-4059 www.aspen-networks.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information