Scope / deliverables
- Securely terminate operator SIP trunks — DoS/DDoS protection, network topology hiding, SIP protocol validation
- Microsoft Teams Direct Routing certified — keep corporate numbers in Teams + bridge to OS Voice/OS4000
- Remote-worker and branch SIP access — secure registration beyond NAT, distributed SIP trunking with OpenScape Branch
- Flexible deployment — physical Lenovo SR250/SR530/SR630 or virtual VMware/KVM/Hyper-V/ProxMox; CAPEX or OPEX (subscription) licensing
- Technical detail: SIP DPI (deep-packet inspection), dynamic pinholes, stateful SIP validation, B2B-UA architecture
- Technical detail: TLS v1.2/1.3 signaling encryption (core + access sides); SRTP media — relay (pass-through) and termination/mediation modes
- Technical detail: media anchoring (for NAT) or media-bypass; codec transcoding and packet resizing
- Technical detail: licensing Base + Redundancy (for HA) + Session (per concurrent SIP); Session licenses shared with OpenScape Branch
- Technical detail: Teams SBA (Survivable Branch Appliance) support in V11; tested/certified with Turkey and regional SIP trunk operators
- Technical detail: centralized SOAP/XML management via CMP + local HTTPS GUI (EN/DE)
- Promark: SIP trunk security analysis, SBC sizing, Teams Direct Routing integration, CMP license management, installation and commissioning
Tags
SBCSession Border ControllerSIP TrunkTLSSRTPNATDoSMicrosoft TeamsDirect RoutingV11OpenScape VoiceOS4000
Vendor‑neutral approach: We select architecture/components based on need; platforms like Unify/Mitel can be positioned as options.