Description:

The smallest of the Ingate SIParators, the Ingate SIParator® 20 is designed for local and small offices. The Ingate SIParator® 20 is an add-on to existing firewalls that seamlessly enables the transmission of realtime communications without affecting firewall security. The SIParator® 20 handles the SIP signaling and media streams, routing them to and from the private IP addresses of authorized users on the LAN. As needs increase, the SIParator® is easily scalable for additional users; with the purchase of software license upgrades, the Ingate SIParator® 20 can support up to 50 simultaneous sessions in a VoIP application or 400 users (assuming 0.1 Erlang per user). As with all Ingate SIParators and Firewalls, the SIParator® 20 has everything necessary for SIP traversal, including a SIP registrar and a SIP proxy, support for NAT and PAT and TLS support for encrypted SIP signaling.
Ingate SIParators connect to the DMZ port of an existing enterprise firewall to seamlessly and easily enable SIP communications without affecting firewall security. It has everything necessary for SIP traversal, including a SIP registrar and a SIP proxy and support for NAT and PAT. The Ingate SIParator® handles the SIP signalling and media streams, routing them to and from the private IP addresses of authorized users on the LAN. Ingate SIParators also come standard with Ingate's TLS support for encrypted SIP signalling, which eliminates the security concerns often associated with enterprise IM by protecting the content of individual messages.
Configuration 1: DMZ The Ingate SIParator™ connects to the existing firewall through the DMZ interface. All traffic will pass through the existing firewall. The configuration requires that a static range of UDP and TCP ports are opened between the Internet and the SIParator™ and between the SIParator™ and the LAN. SIP clients on the LAN need to have the SIParator™ defined as their outgoing proxy or be referred to it via DNS. The firewall continues to control security, but SIP traffic is routed to the LAN only via the SIParator™.
Configuration 2: DMZ/LAN The Ingate SIParator™ connects to the DMZ of the existing firewall and to the LAN. This means that SIP traffic and media streams only have to pass through the existing firewall once (or not at all for calls inside the office). A static range of UDP and TCP ports need to be opened in the firewall between the Internet and the SIParator™. SIP clients on the LAN need to have the SIParator™ defined as their outgoing proxy or be referred to it via DNS.
Configuration 3: Standalone The Ingate SIParator™ connects to both the LAN and the Internet, operating entirely in parallel with the existing firewall. The SIParator™ will only handle SIP signalling and media streams; everything else will pass through the existing firewall. This setup has no requirements for the existing firewall and requires no configuration changes. SIP clients on the LAN need to have the SIParator™ defined as their outgoing proxy or be referred to it via DNS.
Allow five days for build and test.

Back to Top

Features:

None available.

Back to Top

Specifications:

Back to Top