Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Combat Support Agency Defense Information Systems Agency Enterprise Voice Services Component of DoD Unified Capabilities DISA/NSE.

Published byLorraine Hampton Modified over 8 years ago

Similar presentations

Presentation on theme: "A Combat Support Agency Defense Information Systems Agency Enterprise Voice Services Component of DoD Unified Capabilities DISA/NSE."— Presentation transcript:

1 A Combat Support Agency Defense Information Systems Agency Enterprise Voice Services Component of DoD Unified Capabilities DISA/NSE

2 2 A Combat Support Agency Unified Capabilities (UC) Enterprise Objectives Centralized Voice, Video, and Data Services Enterprise Service Objective: Provide the full range of Unified Capabilities from a limited number of regional locations: –Centrally located Voice and Video over IP (VVoIP) Controllers & XMPP Servers –Minimal footprint at DISA sites worldwide to lower total cost of ownership –Supports enterprise VVoIP conferencing & XMPP Federation –Leverages robust DISN transport –Facilitates Service Mobility for DISA users deployed globally –Enables closer integration with DISA enterprise collaboration / directory services Service Portability Non AS and AS Voice & Video Conferencing Non AS and AS Voice, Video, Data Session Management Unified Messaging Collaboration Voice ISP Access User Mobility (Wired and Wireless) Enterprise Directory Integration UC Apps Integration

3 3 A Combat Support Agency UNCLASSIFIED Enterprise UC Implementation Schedule Extracted from UC Master Plan 3 FY12FY11 FY13-14 FY15-16 NETOPS DoD Component Edge DoD Component Edge DISN Backbone Program/Eng Documents Program/Eng Documents Joint DISA/MILDEP E2E Situational Awareness & Assured Operations DoD Component Stand Up Support to Implementation With MP/IPs DoD Component Stand Up Support to Implementation With MP/IPs ID Sites & Vendors’ Products for Pilot Enterprise UC Pilots Validates a Broad Range of Unified Capabilities Acquire and Deploy Enterprise UC Infrastructure Selected Geographic Enclaves Complete Requirements For Enterprise UC Conduct JITC Testing of Products Conduct JITC Testing of Products PM/Eng/ NetOps Docs Approved NetOps Documentation : Sustainment Plan, CONOPS, & TTPS Updated NetOps Documentation : Sustainment Plan, CONOPS, & TTPS Updated Acquire and Deploy DoD Component Edge Infrastructure to Replace Legacy Infrastructure Phase out of TDM Voice Switches and Phase in Enterprise UC Acquire and Deploy DoD Component Edge Infrastructure to Replace Legacy Infrastructure Phase out of TDM Voice Switches and Phase in Enterprise UC UC Implementation Planning ID Priority Implementation Geo Regions/Sites ID Priority Implementation Geo Regions/Sites Leverage UC Spiral 1 & 2 NetOps Leverage UC Spiral 1 & 2 NetOps Implementation Complete BCA and UC IP

4 4 A Combat Support Agency UNCLASSIFIED Today’s Enterprise Services Integrated VVoIP and Data Collaboration Services Softphones on Laptops IP Hardphones Analog Phones via IADs Common End User Devices Audio Conferencing Video Conferencing Attendant Services Centralized Enterprise Services Voicemail IM, Chat, Presence Initial Lab Assessment Pre-Pilot Assessment Operational Pilots User / Service Mobility

5 5 A Combat Support Agency UNCLASSIFIED Softphones on Laptops IP Hardphones Analog Phones via IADs Common End User Devices Centralized Enterprise Services FY 2013 Enterprise Services DISN Integrated UC, E-mail, Directory & DCO Service Audio Conferencing Video Conferencing Attendant Services Voicemail IM, Chat, Presence Enterprise Directory Integration User / Service Mobility DCO Integration with UC Conferencing Enterprise E-Mail

6 6 A Combat Support Agency UNCLASSIFIED SBU Enterprise Voice Systems Worldwide Multivendor Enterprise Solution Distribution of 4M users –OCONUS (13 Major Regions with ~ 650K Users) PAC 6 Major Regions : Korea, Japan, Okinawa, Guam, Hawaii, Alaska Eur 4 Major Regions: UK, Germany/BeneLux/Spain, Italy, Turkey CENTCOM 3 Major Regions : Iraq, Afghanistan, Other –CONUS 3.35M users with number of regions determined by Scalability of the UC Systems Larger Enterprises are desirable –Less hardware and software –Consolidated manpower –Larger quantities of licenses per site allows for bulk purchases Target Enterprise LSC Locations -- TBD –OCONUS driven by survivability and availability –CONUS driven by vendor scalability, number of users, and MILDEP preferences

7 7 A Combat Support Agency Data Firewall Classified Wireless 3G/4G Users Cellular Access Unclassified Wireless Users Enterprise LSC WAN Softswitch Voice ISP Network Infrastructure (Not Public Internet) EBC Data Firewall Teleport AR Enterprise UC & Enterprise LSC Multi Carrier Entry Point E911 DISN EBC with ISP ISP SBC Internal Router External Router UC Transport (DISN) Tactical (Same as Environment 1 Minus the Media Gateway) E911 Management Environment 2 Access E911 Environment 3: Non Mission Critical Locations Environment 1: Mission Critical (B/C/P/S) Environment 2: Mission & Combat Support (B/C/P/S) Mass Notifications IP Softphone IP Hardphone Video CE-R Enterprise Voice Architecture Tailored to Local MILDEP Requirements Discretionary LSC Media Gateway Data Firewall IP Hardphone IP Softphone Video CE-R Mass Notifications E911 IA Accreditation Boundary Tailored to DoD Mission CE-R Data Firewall Media Gateway IP Hardphone IP Softphone Survivable Local Call Processing/MGC ASLAN Video ASLAN Mass Notifications Data Firewall E911 EBC Data Firewall AR EBC IA Accreditation Boundary Tailored to DoD Mission

8 8 A Combat Support Agency Proposed DoD UC Service Offerings Mapped from AF Operating Environments 8 Environments 1a and 1b Operational Base Environment 2 Operational Base Environment 3 Non- Operational Site 1a. Requires, under normal operating conditions, access to all UC services described above and in the event it is disconnected from DISN, requires all- subscriber basic local UC services (local-user presence, voice, video, IM/chat) and limited external commercial services (available to all users on a precedence basis). An example of this environment would be an operational flying base. 1b. The same as 1a, but in a deployed location such as Afghanistan or Iraq. Provides remote subscriber management of users hosted off the base-LSC, VVoIP conferencing, E911 services, and external carrier access for cellular and PSTN services. UC Gold Service Offering Provides Session Control from the E-LSC, VVoIP conferencing services, E911 services, and external carrier access for cellular and PSTN services. In survivable mode, PSTN/E911 access is via a local Media Gateway (MG). UC Silver Service Offering Provides Session Control from the E- LSC, VVoIP conferencing services, E911 services, and external carrier access for cellular and PSTN services. Location uses alternative communication (such as cellular) for survivability UC Bronze Service Offering 2. A main operating base that requires, under normal operating conditions, access to all UC services described above and in the event it is disconnected from DISN, requires all-subscriber voice-only service and limited external commercial services (available to all users on a precedence basis). An example of this environment would be a non- flying base such as a training or logistics facility. 3. A small-scale location that requires, under normal operating conditions, access to all UC service described above, but does not require any UC services, including voice services or external commercial services, in the event it is unable to connect to the DISN. An example of this would be a remote recruiting office, or remote administrative detachment.

9 A Combat Support Agency Defense Information Systems Agency Enterprise Service Voice Features 9

10 10 A Combat Support Agency Edge Boundary Controller (EBC) Layer 7 VVoIP AS-SIP Firewall CER EBC Aggregation Router (AR) DISN Core IP 10.10.10.1 IP 10.10.10..2 IP 64.146.63.1 Performs NAPT Traversal / Topology Hiding for VVoIP* Intrusion Detection/ Prevention Services Based on Commercial Session Border Controller Technology AS SIP Media Statefully Opens and Closes Pinholes for UDP Bearer Traffic Based on AS SIP Messaging IA Accreditation Boundary

11 11 A Combat Support Agency Consolidating IA Accreditation Boundaries Minimizes Need for Data Firewalls, IDSs, and EBCs EBC EBCs are deployed at each IA accreditation boundary in parallel with data firewalls Avoids opening large numbers of ports on firewalls to support VVoIP Enclave A-1 LAN FW EBC Enclave A-2 LAN FW EBC Enclave A-N LAN FW … Regional EBCRegional FW DISN Core By increasing the size of the trusted IA boundary to cover larger regions, can reduce number of EBCs required (Example: Air Force CITS Block 30 Network) Region “A” WAN New IA C&A Boundary (not per-enclave)

12 12 A Combat Support Agency Using the Link Layer Discovery Protocol (LLDP) and SNMP, IP phones are tracked behind an Ethernet switch port: The MAC address of an IP phone is dynamically associated with a switch port. The switch port is associated with a particular Emergency Response Location (ERL.) Enterprise LSC Automated E911 Management Solutions (Co-located with Enterprise LSC) DISN Core* LEC Network City B LEC Network City A Media Gateways** B/C/P/S Signaling API SNMP Phone Polling to LSC SNMP Port Polling to Layer 2 Switches 1. To track the location of phones, the E911 Management Solution uses SNMP to query the LSC for a list of registered phones and their associated MAC address. 2. Using SNMP, the E911 Management Solution queries the layer 2 access switches in the network (the ones specifically identified to E911 Management Solution) to determine the port to which the phones are connected. The E911 Management Solution does this tracking at regular intervals during the day so that it can identify when a phone moves. See “Backup Slides,” for details regarding the processing of E911 calls. Automated E911 Management Solution Automatically Updates E911 Information Without User Intervention PSAP PRI * For the sake of simplicity, the ASLAN and DISN Core network infrastructure is greatly simplified. ** For COOP and E911 calls, each enclave has a Media Gateway with PRI links to the service provider’s network. Acknowledgement: Content derived from Cisco Emergency Responder Guide ASLAN*

13 13 A Combat Support Agency What Happens When a User Makes an Emergency Call DoD Core Enterprise LSC E911 Management Solution ext. 555-1234 Media Gateway B/C/P/S ALI Database PSAP Local Service Provider Network When an emergency call is originated from ext. 555-1234: 1.The LSC routes the call over to the E911 Management Solution. 2.Using its internal mapping tables, the E911 Management Solution is able to associate ext. 555- 1234 with a particular phone and is able to associate that phone with a particular MAC address. 3.Using information derived from the phone tracking process described on slide 8, the E911 Management Solution knows which switch port a phone is connected to and is able to associate that “switch port” location with a particular Emergency Response Location (ERL) within a particular B/C/P/S. When an emergency call is originated from ext. 555-1234: 1.The LSC routes the call over to the E911 Management Solution. 2.Using its internal mapping tables, the E911 Management Solution is able to associate ext. 555- 1234 with a particular phone and is able to associate that phone with a particular MAC address. 3.Using information derived from the phone tracking process described on slide 8, the E911 Management Solution knows which switch port a phone is connected to and is able to associate that “switch port” location with a particular Emergency Response Location (ERL) within a particular B/C/P/S. 4.The internal mapping tables of the E911 Management Solution associates the Emergency Response Location (ERL) with the following: a.The gateway route to the appropriate service provider’s network. b.The appropriate Emergency Location Identification Number (ELIN) which is used by the local Service Provider to route the call to the appropriate PSAP 5.The E911 Management Solution converts the calling party number to the ELIN. The E911 Management Solution via the LSC routes the call to the appropriate Gateway (per the route pattern associated with the ERL). 4.The internal mapping tables of the E911 Management Solution associates the Emergency Response Location (ERL) with the following: a.The gateway route to the appropriate service provider’s network. b.The appropriate Emergency Location Identification Number (ELIN) which is used by the local Service Provider to route the call to the appropriate PSAP 5.The E911 Management Solution converts the calling party number to the ELIN. The E911 Management Solution via the LSC routes the call to the appropriate Gateway (per the route pattern associated with the ERL). 6.The service provider looks up the ELIN in the automatic location information (ALI) database, and routes the call to the appropriate PSAP. 7.The PSAP uses the ELIN as an index into the ALI database to discover the caller’s address, etc. 6.The service provider looks up the ELIN in the automatic location information (ALI) database, and routes the call to the appropriate PSAP. 7.The PSAP uses the ELIN as an index into the ALI database to discover the caller’s address, etc. Acknowledgement: Content derived from Cisco Emergency Responder Guide

14 14 A Combat Support Agency 911 Service Via the Voice ISP Standards Based Solution a Work-in-Progress In North America alone, there are over 6000 local Public Safety Access Points (PSAPs). A highly standardized system is essential to enable the seamless inter-communications between the Voice ISP and the geographically appropriate PSAP. While a great deal of progress has been made, Next Generation 911 (NG9-1-1) standards are still a work-in- progress. The NG9-1-1 infrastructure (e.g., Emergency Call Routing application servers and associated databases) is expected to take several years to implement. Standards to ensure the security of 911 related information both “at rest” and “in transit” are also a work-in-progress. In North America alone, there are over 6000 local Public Safety Access Points (PSAPs). A highly standardized system is essential to enable the seamless inter-communications between the Voice ISP and the geographically appropriate PSAP. While a great deal of progress has been made, Next Generation 911 (NG9-1-1) standards are still a work-in- progress. The NG9-1-1 infrastructure (e.g., Emergency Call Routing application servers and associated databases) is expected to take several years to implement. Standards to ensure the security of 911 related information both “at rest” and “in transit” are also a work-in-progress. 911 End-to-End Call

15 15 A Combat Support Agency UNCLASSIFIED Continuity of Operations (COOP) Capability 1. If access to Primary Enterprise LSC is interrupted => Failover to Secondary Enterprise LSC 2. If access to Secondary Enterprise LSC is interrupted => Failover to Local Survivable Call Processing / MGC 3. The Enterprise Voice architecture must include a COOP strategy which provides for the survivability of telephony service at the B/C/P/S location when access to the EnterpriseLSC is interrupted because of a WAN outage or other factors. The local survivable call processing/media gateway controller (MGC) capability provides routine services and PSTN access for the duration of the outages. * In the operational solution, this functionality may be incorporated into Router or Media Gateway H/W. **Enclave: B/C/P/S

16 16 A Combat Support Agency UNCLASSIFIED Single Number Portability Supports Subscriber Mobility Within a Region “VoIP User A” Single Number Portability*: “User A” relocates from MILDEP Site A to MILDEP Site B which are both served by the same Enterprise LSC. “User A” is able to register for service with the Enterprise LSC using his/her same telephone number and receives the same privileges and capabilities. Inter-enclave calls from or to “User A” are counted against MILDEP Site B’s ASAC budget. Single Number Portability*: “User A” relocates from MILDEP Site A to MILDEP Site B which are both served by the same Enterprise LSC. “User A” is able to register for service with the Enterprise LSC using his/her same telephone number and receives the same privileges and capabilities. Inter-enclave calls from or to “User A” are counted against MILDEP Site B’s ASAC budget. * Number Portability: The end user's ability to obtain VVoIP services in a transparent manner regardless of the end user's point of attachment across a given Enterprise Region.

17 17 A Combat Support Agency UNCLASSIFIED System scalability, geographic location of the hosted users, and performance requirements necessitate the regionalized deployment of Enterprise LSCs (E-LSCs). E-LSCs intercommunicate via their co-located WAN Softswitch (WAN SS). To support transparent user mobility between Regions, E-LSCs would need to be able to freely exchange Subscriber Profile Data. Today, subscriber profile data is vendor specific. Therefore, the exchange of Subscriber Profile Data between E-LSCs is not currently a viable option. Vendor End Instruments use proprietary protocols to interface between LSC and End Instrument. End Instrument movement would be limited to regions with the same vendor E-LSC Near-term Alternative: Automate the process of populating specific user fields within a Subscriber’s Profile using an add-on capability that permits the E-LSC to import user attribute values from an external Enterprise LDAP directory into its embedded, local database (See backup slides for additional details) and use AS SIP end instruments when migrating between regions. System scalability, geographic location of the hosted users, and performance requirements necessitate the regionalized deployment of Enterprise LSCs (E-LSCs). E-LSCs intercommunicate via their co-located WAN Softswitch (WAN SS). To support transparent user mobility between Regions, E-LSCs would need to be able to freely exchange Subscriber Profile Data. Today, subscriber profile data is vendor specific. Therefore, the exchange of Subscriber Profile Data between E-LSCs is not currently a viable option. Vendor End Instruments use proprietary protocols to interface between LSC and End Instrument. End Instrument movement would be limited to regions with the same vendor E-LSC Near-term Alternative: Automate the process of populating specific user fields within a Subscriber’s Profile using an add-on capability that permits the E-LSC to import user attribute values from an external Enterprise LDAP directory into its embedded, local database (See backup slides for additional details) and use AS SIP end instruments when migrating between regions. UC Mobility Between Regions Vendor and Database Limitations Region 1 Region 2 “Nomadic User” WAN SS DISN Core Subscriber Data Enterprise LSC

18 18 A Combat Support Agency UNCLASSIFIED Enterprise Classified Voice and Video (CVVoIP)

19 A Combat Support Agency Enterprise CVVoIP Way Forward Journey Has Begun Achieve approval for proposed Enterprise CVVoIP architecture Define resources needed –Site survey and cost – after CSD cost estimate –Develop BOM – Completed /Equipment on order –Implementation Plan - October Time-line for a phase approach and select locations/sites –Phase 1a (CONUS) – End of December 2011 –Phase 1b (EUR) – End of December 2011 –Phase 2 (SWA) - TBD –Phase 3 (PAC) - TBD Plan for NetOPS requirements –Accreditation –Define/develop the connection process and operations TTP’s –Sustainment Support coordination with the MILDEP’s –ARMY CIO very much interested in a DISA Enterprise CVVoIP soonest (preference for CONUS first)

20 A Combat Support Agency PSTN ** Proprietary signaling from the EI to the LSC is also allowed. Enterprise CVVoIP Service Notional View of the Architecture Key Tenets: Significantly lowers total cost of ownershipSignificantly lowers total cost of ownership Reduces per site accreditation costReduces per site accreditation cost Facilitates Mobility for the War fighter and operational userFacilitates Mobility for the War fighter and operational user Key Tenets: Significantly lowers total cost of ownershipSignificantly lowers total cost of ownership Reduces per site accreditation costReduces per site accreditation cost Facilitates Mobility for the War fighter and operational userFacilitates Mobility for the War fighter and operational user Hosted Applications: Collaboration Services Video Services Directory Services Firewall Tier 0 Distributed Regional WAN Soft Switch Tier 1 Distributed Regional LSC DRSN Media Gateway CE-R Enclave N CE-R ASLAN Survivable Local Call Processing IP Soft phone IP Hard phones Firewall DISN Core AR Enclave N+1 CE-R ASLAN Survivable Local Call Processing IP Soft phone IP Hard phones Firewall

21 A Combat Support Agency Regional CVVoIP Service Replication and Syncrhonization Tier 0 Distributed WAN Soft Switch Maintenance IP Hard phone Firewall WAN SS DRSN Hosted Applications: Collaboration Services Collaboration Services Video Services Video Services Directory Services Directory Services Tier 0 Distributed WAN Soft Switch Maintenance IP Hard phone Firewall WAN SS DRSN Hosted Applications: Collaboration Services Collaboration Services Video Services Video Services Directory Services Directory Services Regional DISN Core ASLAN Firewall Tier 1 Distributed LSC Firewall ASLAN Tier 1 Distributed LSC Replication

22 22 A Combat Support Agency UNCLASSIFIED www.disa.mil

Download ppt "A Combat Support Agency Defense Information Systems Agency Enterprise Voice Services Component of DoD Unified Capabilities DISA/NSE."

Similar presentations

Unified Communications Bill Palmer ADNET Technologies, Inc.

Unified Communications Bill Palmer ADNET Technologies, Inc.
The leader in session border control for trusted, first class interactive communications.

The leader in session border control for trusted, first class interactive communications.
www.dynamicsoft.com Fall VoN 2000 SIP for IP Communications Jonathan Rosenberg Chief Scientist.

Fall VoN 2000 SIP for IP Communications Jonathan Rosenberg Chief Scientist.
Open Standards: Communications at Your Desktop SmartCity Summit, April 29 th, 2003 Anne L. Coulombe Head of SIP-Based Solutions, Mitel Networks

Open Standards: Communications at Your Desktop SmartCity Summit, April 29 th, 2003 Anne L. Coulombe Head of SIP-Based Solutions, Mitel Networks
University of Baltimore Telecommunications Technology

University of Baltimore Telecommunications Technology
The current 9-1-1 System Landline caller The emergency call process starts with a caller dialing 9-1-1. (highly simplified) © 2011 Colorado 9-1-1 Resource.

The current System Landline caller The emergency call process starts with a caller dialing (highly simplified) © 2011 Colorado Resource.
BAI613 Module 2 - Voice over IP Technology. Module Objectives 1. Describe the benefits of IP Telephony/Packet Telephony/VoIP over traditional telephone.

BAI613 Module 2 - Voice over IP Technology. Module Objectives 1. Describe the benefits of IP Telephony/Packet Telephony/VoIP over traditional telephone.
SIP & SS7 (SIP-02) Monday - 09/10/07, 10:00-10:45am.

SIP & SS7 (SIP-02) Monday - 09/10/07, 10:00-10:45am.
1 UCaaS Subscription Detail FunctionalitySupported Devices / Endpoints Types of UCaaS subscriptions EssentialBasicFoundationP1Professional Maximum # of.

1 UCaaS Subscription Detail FunctionalitySupported Devices / Endpoints Types of UCaaS subscriptions EssentialBasicFoundationP1Professional Maximum # of.
Vodacom Microsoft Hosted Lync

Vodacom Microsoft Hosted Lync
TANDBERG Video Communication Server March 2008. TANDBERG Video Communication Server Background  SIP is the future protocol of video communication and.

TANDBERG Video Communication Server March TANDBERG Video Communication Server Background  SIP is the future protocol of video communication and.
All Rights Reserved © Alcatel-Lucent 2006, ##### Campus Safety Preparing the Foundation for Student Safety Greg Kovich Senior Director, Education Business.

All Rights Reserved © Alcatel-Lucent 2006, ##### Campus Safety Preparing the Foundation for Student Safety Greg Kovich Senior Director, Education Business.
IP Communications Services Redefining Communications Teresa Hastings Director WorldCom SIP Services Conference – April 18-20, 2001.

IP Communications Services Redefining Communications Teresa Hastings Director WorldCom SIP Services Conference – April 18-20, 2001.
Georgia Interoperability Network

Georgia Interoperability Network
Overview:  Manufacturer of Media Gateways, Enterprise Session Border Controllers, Media Servers, IP Phones, Mobility Technologies  20 years of Operations,

Overview:  Manufacturer of Media Gateways, Enterprise Session Border Controllers, Media Servers, IP Phones, Mobility Technologies  20 years of Operations,
NENA’s 11 th Annual Technical Development Conference A proposal to support E911 calls on Voice over IP Networks Martin Dawson – Nortel Networks.

NENA’s 11 th Annual Technical Development Conference A proposal to support E911 calls on Voice over IP Networks Martin Dawson – Nortel Networks.
© 2004, SS8 Networks, Inc. Remote Office/Branch Office IP Telephony Solutions Sean Kent – Director Architecture/Technology V18.

© 2004, SS8 Networks, Inc. Remote Office/Branch Office IP Telephony Solutions Sean Kent – Director Architecture/Technology V18.
Nortel CS1000 Branch Office Solutions

Nortel CS1000 Branch Office Solutions
1 Networking A computer network is a collection of computing devices that are connected in various ways in order to communicate and share resources. The.

1 Networking A computer network is a collection of computing devices that are connected in various ways in order to communicate and share resources. The.
Data Centers and IP PBXs LAN Structures Private Clouds IP PBX Architecture IP PBX Hosting.

Data Centers and IP PBXs LAN Structures Private Clouds IP PBX Architecture IP PBX Hosting.

Similar presentations

Ads by Google