Ribbon EdgeMarc Configuration for SkySwitch

Question

Accepted Answer

SBC's (Session Border Controllers) are not generally necessary with SkySwitch but can provide some unique advantages such as local survivability and seamless call failover. This guide is broken into sections for different types of configuration for EdgeMarc. This article assumes the reader has some general knowledge of IPv4 networking. SIP ALG is typically not recommended on most devices but it's a core feature of most SBCs and is generally treated as a requirement. SkySwitch provides best-effort configuration and registration Support for EdgeMarc devices, but time should be scheduled in advance with a trained technician. If you are using a Cloud2Edge device purchased from the SkySwitch store, you should contact 888VoIP for advanced configuration or troubleshooting. If purchased elsewhere, you may need to purchase a Support agreement from Ribbon. General Information This article was written using an Edgemarc 2900e and 2900a using firmware version 15.8.0. Settings on other Edgemarc devices may vary slightly from this article. Licensing and Firmware Considerations Licensing Edgemarc's can be licensed by concurrent call, or by using Cloud2Edge. If you license by concurrent call those licenses are lifetime (not annual), these licenses can be purchased with the unit initially or added afterward. Licensing with Cloud2Edge allows you to have a high call volume for a monthly fee. Switching a Standard License to Cloud2Edge Devices can be switched from Standard licensing to Cloud2Edge, but all licenses on the device are lost, the unit also cannot be switched back to a standard license agreement. There may be fees associated with changing the license to Cloud2Edge. Firmware Firmware must be acquired from the device's vendor, or directly from Ribbon if you have a support agreement. Firmware must be uploaded to the device using FTP or TFTP. Device Configuration Information Default LAN/WAN Information Default WAN IP: DHCPNot accessible through WAN IP by default Default LAN IP: 192.168.1.1 with DHCP enabled. Default Username/Passwords HTTPSUsername: root Password: defaultIf shipped from 888voip, the root password may have been changed to Root1! SSHUsername: root Password: @#$%^&*!)( (shift+2345678109) You will be asked to create a new password for HTTPS upon login, it is very important that you also change the SSH password on these devices. The default password has a minimum of 6 characters and (unfortunately) a maximum of 8 characters. VLANs Edgemarc's can operate in many situations, but if you are passing Voice and Data over the device, you should be setting a Voice VLAN. When you have a Voice VLAN, Voice traffic can only operate on that VLAN. This may impair the ability to use Softphones on the Data Network. Survivability Survivability allows phones to stay locally registered to the Edgemarc as the result of a WAN failure, which allows for local calling capabilities. If used in combination with an FXO port on the 2900a, calls can fail over to an FXO port. You must have a static IP address for Survivability to work properly. Reboots When changes are applied, the Edgemarc may interrupt voice calls or completely reboot. Recommended Basic Setup Process Change HTTP Password Change SSH Password Navigate to +Network (top-level page)Change LAN and WAN IP addresses Enable VLAN Support and set your default VLAN Apply later DON'T Submit (DHCP is automatically disabled at this point, you need to set your DHCP range and enable DHCP again) Navigate to Network > DHCP ServerDelete the existing DHCP Range Add your DHCP Range (within your subnet) and click 'Add' Select Enable DHCP Server Set 'TFTP/FTP Server Name (option 66)' to HTTP://sipcfg.io/cfg/ Add any other relevant settings to your configuration. Press Apply Later, then Submit All at the top. You may have to unplug and plug your device back in (if plugged into a switch and the link was not lost) to get a new DHCP link. Navigate back to Network > VLANAdd a VLAN accordingly if using the Edgewater for Voice and Data. In my example, I'm adding VLAN 10. Navigate to VLAN Memberships (on the same page), select which Ports should be a member by each VLAN. Navigate to VLAN Port (on the same page) to choose your tagging settings. Navigate back to DHCP Server (if you want DHCP enabled on the VLAN). On this page, select the Subnet and repeat the DHCP Instructions from Step 4 for the VLAN. (Optional) Navigate to +SecurityIf you have a red warning at the top of the page, you didn't change your SSH Password yet. Choose whether to allow certain protocols through the Firewall (from the WAN). IF you enable HTTP/HTTPS/SSH/TELNET via WAN, it's very important to set your trusted hosts.Navigate to Security > Trusted HostsSetting a Trusted Host will only allow access to what is enabled in the security tab (even on the LAN). Once your Trusted Hosts are set, you will only be able to access from those IP addresses. It's easy to lock yourself out of the LAN with these settings. Make sure to add the LAN Subnet to Trusted Hosts. General Voice Configuration Navigate to the +VoIP > SIP menuChange SIP Server Address to your Reseller Outbound Proxy Address.The reseller outbound proxy address follows the format .hpbx.outboundproxy.com where is your 5 digit reseller id with SkySwitch. Example15611.hpbx.outboundproxy.com. Change SIP Server Transport to UDP or the desired transport type. Check Enable Transparent Proxy Mode. Uncheck PRACK Support. (Optional, but recommended) Check Limit Outbound and Limit Inbound to listed Proxies. If you intend to use SIP Survivability, check Use Custom Domain and set the Custom Domain to your customer's domain name. Navigate to VoIP > SIP > Survivability(if you intend to use survivability)Set Survivability to Enabled (auto). Check Enable keepalive messages for active server. Set Interpret error code as success to 403 Check Monitor SIP Messages. This setting can result in certain error messages to cause a failover. Set Ignore response codes to 407, 503 Check SIP Server redundancy. Uncheck Enable forward next REGISTER Check EnableSRV Lookup Check Enable 503 response for SUBSCRIBE with transparent mode after server failover. Set the Number of digits for local dialing (if using 3 digit extensions, set to 3) Check Pass-Through Mode Uncheck all options under SIP Registration Control.Set Rate Pacing Behavior to None Submit your settings then verify there are two DNS records showing on the Current Status under SIP Server Reachability. If you only see one DNS record, there is something likely wrong with your settings. Current Call Control should show remote, but if you pull the WAN cable from the Edgemarc, it should change to Local within a few seconds. Enable Traffic Shaping under Network > Traffic ShaperCheck Enable Traffic Shaping then define upstream and downstream Bandwidth There are many ways to configure traffic shaping, but one option (if you are unsure) is to use the Expedited forwarding mode. You can set your classes of Service at your own discretion. Older version of this guide Configuring an Edgemarc for SkySwitch Nov 2017 Written May 28th, 2020 by Corey S.