You are here: Aruba Instant 8.5.0.0 Help Center > Aruba Instant User Guide > Table of Contents > Media Classification for Voice and Video Calls

Media Classification for Voice and Video Calls

Media classification and data prioritization for voice and video calls in Instant is handled automatically by the Instant AP's firewallFirewall is a network security system used for preventing unauthorized access to or from a private network. for traffic that is allowed by wired ports and user ACLsAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port.. The firewallFirewall is a network security system used for preventing unauthorized access to or from a private network. inspects each UDPUser Datagram Protocol. UDP is a part of the TCP/IP family of protocols used for data transfer. UDP is typically used for streaming media. UDP is a stateless protocol, which means it does not acknowledge that the packets being sent have been received. packet, classifies it as either Voice or Video and correspondingly sets a DSCPDifferentiated Services Code Point. DSCP is a 6-bit packet header value used for traffic classification and priority assignment. value for the packet.

Traffic that is allowed in the network is configured using ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. rules. The Instant AP's firewallFirewall is a network security system used for preventing unauthorized access to or from a private network. automatically allows voice and video call sessions from Skype for Business and Apple Facetime. For all other Skype for Business and Facetime applications such as desktop sharing and file transfer the corresponding ports must be opened using ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. rules.

Before media transmission, a VOIP client may initiate a Session Traversal Utilities for NATNetwork Address Translation. NAT is a method of remapping one IP address space into another by modifying network address information in Internet Protocol (IP) datagram packet headers while they are in transit across a traffic routing device. (STUN) connectivity check and establishes a session. STUN sessions are subjected to media classification and are marked as RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. or non-RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. traffic. The RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. traffic is classified as either voice or video and re-marked with the corresponding DSCPDifferentiated Services Code Point. DSCP is a 6-bit packet header value used for traffic classification and priority assignment. values configured in the SSIDService Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. profile, while the non-RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. traffic is forwarded without re-marking. If data packets are found to be non-compliant with the RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. parameters required in the datapath for classification, the session is marked as best effort and no flags or DSCPDifferentiated Services Code Point. DSCP is a 6-bit packet header value used for traffic classification and priority assignment. is set.

 

The default DSCPDifferentiated Services Code Point. DSCP is a 6-bit packet header value used for traffic classification and priority assignment. values for calls prioritized by media classification is 48 for a voice session and 40 for a video session.

If AppRF is enabled on the SSIDService Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network., alg-rtp must be explicitly permitted in the ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. to allow voice and video traffic in the network. The following is the ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. entry to allow RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks. traffic and configuring this is highly recommended:

(Instant AP)(VOIP-acl)# rule any any match app alg-rtp permit

 

If AppRF is enabled and alg-rtp is not allowed, no voice or video traffic will flow through the network.

When AppRF is enabled, applications must be permitted explicitly in the ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. using their appShort form for application. It generally refers to the application that is downloaded and used on mobile devices. IDs for the Instant AP to allow that particular traffic to flow in the network. Allowing application traffic is necessary for establishing control sessions only after which a voice or video session is established. To obtain full inspection and control of voice and video traffic you can populate an ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. permitting particular appsShort form for application. It generally refers to the application that is downloaded and used on mobile devices.. The following is a recommended ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. configuration for an SSIDService Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. profile:

(Instant AP)(config)# wlan access-rule VOIP-acl

(Instant AP)(VOIP-acl)# rule any any match app alg-facetime permit

(Instant AP)(VOIP-acl)# rule any any match app alg-facetime-audio permit

(Instant AP)(VOIP-acl)# rule any any match app alg-ftp permit

(Instant AP)(VOIP-acl)# rule any any match app alg-h323 permit

(Instant AP)(VOIP-acl)# rule any any match app alg-jabber-audio permit

(Instant AP)(VOIP-acl)# rule any any match app alg-jabber-desktop-sharing permit

(Instant AP)(VOIP-acl)# rule any any match app alg-jabber-mc permit

(Instant AP)(VOIP-acl)# rule any any match app alg-jabber-video permit

(Instant AP)(VOIP-acl)# rule any any match app alg-noe permit

(Instant AP)(VOIP-acl)# rule any any match app alg-rtp permit

(Instant AP)(VOIP-acl)# rule any any match app alg-rtsp permit

(Instant AP)(VOIP-acl)# rule any any match app alg-sccp permit

(Instant AP)(VOIP-acl)# rule any any match app alg-sip permit

(Instant AP)(VOIP-acl)# rule any any match app alg-sip-audio permit

(Instant AP)(VOIP-acl)# rule any any match app alg-sip-video permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-app-sharing permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-audio permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-desktop-sharing permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-file-transfer permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-secure permit

(Instant AP)(VOIP-acl)# rule any any match app alg-skype4b-video permit

(Instant AP)(VOIP-acl)# rule any any match app alg-svp permit

(Instant AP)(VOIP-acl)# rule any any match app alg-vocera permit

(Instant AP)(VOIP-acl)# rule any any match app alg-wifi-calling permit

(Instant AP)(VOIP-acl)# end

(Instant AP)# commit apply

Alternatively, users can define an higher precedence allow-all rule in the ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. which will allow all application, video and voice traffic in the network without having to permit them explicitly. The following is the ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. configuration to allow all traffic:

(Instant AP)(config)# wlan access-rule allow-all

(Instant AP)(allow-all)# rule any any match any any any permit

/*]]>*/