Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, H.350: Everything OpenSource and solving the H.323 problem.

Published byDinah Cook Modified over 8 years ago

Similar presentations

Presentation on theme: "Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, H.350: Everything OpenSource and solving the H.323 problem."— Presentation transcript:

1 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de H.350: Everything OpenSource and solving the H.323 problem Internet2 Spring Member Meeting Arlington, USA May 2005

2 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Outline The environment How does it work? Integration in the existing environment Problems What about the future? Are other systems already in place? References/Further information

3 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de The environment A ‘more or less’ mixed environment –Room based systems: Tandberg –Desktop based systems: Polycom ViaVideo, PVX –MCUs: Codian, Tandberg (courtesy of Codian & Tandberg) –Gatekeeper: Multi-zone GnuGK 2.0.8 (Linux based) Two zones Running in full proxy mode to overcome the H.323 firewall issue –H.350 Directory Service: OpenLDAP

4 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de The environment Images: © Polycom, © Tandberg

5 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de The environment All VC endpoints are registered in their zone at the Gatekeeper –Registration requires a matching ‘IP-Alias-E.164’ combination (Even a typo in the Alias causes a rejection) Does not work well with DHCP (Workaround possible) –Authentication/Authorization is essential to ensure a high quality/availability/reliability of service (not QoS!!) → Part of our security concept (very restrictive)

6 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de How does it work? Endpoint Gatekeeper/ProxyH.350 RRQ (10.10.1.10, Kewin, 1234) Ldapsearch(10.10.1.10, Kewin, 1234) Ldapsearch: Success RCF 1.Endpoint sends RRQ (Registration request) to the Gatekeeper 2.The Gatekeeper sends an LDAP search using the ‘IP-Alias-E.164’ combination to the H.350 Directory Service 3.H.350 confirms search with success 4.The Gatekeeper sends a RCF (Registration confirm) to the endpoint

7 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Advantages In this way we can support H.350 authentication even though the endpoints do not support H.350 (unfortunately only a few systems have this feature already) This setup works with future developments –SIP –Integration of Management Tools E.g. the Management Tools can use the H.350 Directory Service to manage phonebooks, etc. –It scales well, since we do not rely on ‘Corporate licenses’ for 20 endpoints, etc. (we can have as many as we want to )

8 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Integration in the environment Only a few changes are necessary (Changes are currently applied) –Install and configure OpenLDAP according to the H.350 cookbook (http://lab.ac.uab.edu/vnet/cookbook/)http://lab.ac.uab.edu/vnet/cookbook/ –Recompilation and reconfiguration of the Gatekeeper/Proxy (I prefer GnuGK 2.0.8 for many reasons…) –Conversion of the current mysql database entries into H.350 Directory Service entities (Script almost done) –Update of status webpages at http://www.rzg.mpg.de/vc/http://www.rzg.mpg.de/vc/ Phonebook, Call status, Registered endpoints, etc. –Update of our management webpages Add new systems, etc.

9 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Problems Most of the problems were discovered during the GnuGK-H.350 workshop at the 19 th APAN Meeting in January 2005 (http://www.rzg.mpg.de/vc/docs/apan/)http://www.rzg.mpg.de/vc/docs/apan/ Understand and install OpenLDAP, including the configuration of the H.350 Directory Service –It looked easier than it was… Underlying library for GnuGK had to be compiled differently, otherwise the Gatekeeper crashes while initializing the LDAP support Fixing the ldaplink.cxx file of GnuGK

10 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Problems Why going through all the problems? –Its worth it!! H.350 is the way to go –We wanted to have everything up and running using OpenSource software → we have a quite a few smaller Institutes who can not afford a commercial solution –We chose GnuGK as our main Gatekeeper about 3 years ago; running the system in full proxy mode to overcome the H.323 Firewall issue The system works very reliable –In 2004 the system handled more than 11000 calls with way more than 2TB of data –From time to time we run > 60Mb/s through the proxy The system is OpenSource → free –We were not keen to replace a reliable system (‘Never touch a running system’)

11 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de What about the Future? Are other systems in place already? I hope many of you will use H.350 –In combination with GnuGK, because the combination of OpenLDAP and GnuGK is free, easy to use and very reliable Other systems already in place: –Flinders University (Adelaide, Australia), 3/2005 GnuGK 2.0.8, Novell LDAP (Schema files were adjusted and will be made available for the cookbook soon) –Max Planck Institute of Plasmaphysics (Greifswald, Germany), Test-Setup since 12/2004 GnuGK 2.0.8, OpenLDAP (Full migration to the ‘production’ server in 5/6/2005 –Australian public and national Gatekeeper@AARNet (Canberra, Australia), Systems will be deployed in 5/6/2005 Future plans –Install more H.350 Directory Services in combination with GnuGK –Implement ‘all’ aspects of H.350 in GnuGK

12 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de References/Further Information Installation and configuration will be made available for the next version of the H.350 cookbook Webpage of the APAN Workshop – http://www.rzg.mpg.de/vc/docs/apan/ http://www.rzg.mpg.de/vc/docs/apan/ At the next QUESTNet (July 2005) –there will be a full day ‘hands-on’ workshop on how to setup H.350 with GnuGK Send me an email kfs@rzg.mpg.de or kewin.stoeckigt@aarnet.edu.aukfs@rzg.mpg.de kewin.stoeckigt@aarnet.edu.au

13 Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, kfs@rzg.mpg.de Acknowledgement Dr. U. Schwenn, MPG Dr. E. Verharen, SURFnet D. Schroeder, Flinders University J. Lynn, J. Gemmill, UaB S. Kingham, AARNet

Download ppt "Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, H.350: Everything OpenSource and solving the H.323 problem."

Similar presentations

Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, U. Schwenn – H.323 Opensource Firewall Solutions 1 H.323 & Firewalls.

Computing Center of Max-Planck-Society and Institute of Plasmaphysics K. Stoeckigt, U. Schwenn – H.323 Opensource Firewall Solutions 1 H.323 & Firewalls.
K. Stoeckigt, Secure real-time audio/video communication – H.350, Encryption & Gatekeeper/Proxy – using H.323 (…and a bit SIP) Tutorial/Workshop.

K. Stoeckigt, Secure real-time audio/video communication – H.350, Encryption & Gatekeeper/Proxy – using H.323 (…and a bit SIP) Tutorial/Workshop.
TANDBERG Video Communication Server March 2008. TANDBERG Video Communication Server Background  SIP is the future protocol of video communication and.

TANDBERG Video Communication Server March TANDBERG Video Communication Server Background  SIP is the future protocol of video communication and.
MVTS & PortaBilling Integration between MVTS (Mera VoIP Transit Softswitch) and PortaBilling100 Vancouver, BC July 2004 Porta Software

MVTS & PortaBilling Integration between MVTS (Mera VoIP Transit Softswitch) and PortaBilling100 Vancouver, BC July 2004 Porta Software
Voice over IP Fundamentals

Voice over IP Fundamentals
Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.
Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.

Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.

Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Software Frameworks for Acquisition and Control European PhD – 2009 Horácio Fernandes.

Software Frameworks for Acquisition and Control European PhD – 2009 Horácio Fernandes.
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.

Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
Kalpesh Patel Ramprabhu Rathnam

Kalpesh Patel Ramprabhu Rathnam
Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.

Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB

SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
Proprietary and Confidential 1. College Registration 2. College as Receiver 3. College as Sender Postsecondary Demonstrations.

Proprietary and Confidential 1. College Registration 2. College as Receiver 3. College as Sender Postsecondary Demonstrations.
taskbar Notification area Start To change size of taskbar: RMC- uncheck Lock the taskbar Changing Properties : RMC- Properties.

taskbar Notification area Start To change size of taskbar: RMC- uncheck Lock the taskbar Changing Properties : RMC- Properties.
Object Oriented Databases by Adam Stevenson. Object Databases Became commercially popular in mid 1990’s Became commercially popular in mid 1990’s You.

Object Oriented Databases by Adam Stevenson. Object Databases Became commercially popular in mid 1990’s Became commercially popular in mid 1990’s You.
31/10/2000NT Domain - AD Migration - JLab 2000 NT DOMAIN - ACTIVE DIRECTORY MIGRATION Michel Jouvin LAL Orsay

31/10/2000NT Domain - AD Migration - JLab 2000 NT DOMAIN - ACTIVE DIRECTORY MIGRATION Michel Jouvin LAL Orsay
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.

Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,

BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,

Similar presentations

Ads by Google