Home » Panasonic Manuals » Telephony » Panasonic KX-TGP500B04 » Manual Viewer

Panasonic KX-TGP500B04 Administration Guide - Page 27

Encryption

View all Panasonic KX-TGP500B04 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 27 highlights

1.1.6 Provisioning http://prov.example.com/Panasonic/Config0080F0111111.cfg b. The unit with the MAC address 0080F0222222 accesses the following URLs: http://prov.example.com/Panasonic/ConfigCommon.cfg http://prov.example.com/Panasonic/Config0080F0222222.cfg Example Provisioning Direction from the Server The following figure shows an example NOTIFY message from the server, directing the units to perform provisioning. The text "check-sync" is specified for "CFG_RESYNC_FROM_SIP". NOTIFY sip:[email protected] SIP/2.0 Via: SIP/2.0/UDP xxx.xxx.xxx.xxx:5060;branch=abcdef-ghijkl From: sip:[email protected] To: sip:[email protected] Date: Thu, 1 Jan 2009 01:01:01 GMT Call-ID: 123456-1234567912345678 CSeq: 1 NOTIFY Contact: sip:xxx.xxx.xxx.xxx:5060 Event: check-sync Content-Length: 0 1.1.6.6 Encryption Secure Provisioning Methods In order to perform provisioning securely, there are 2 methods for transferring configuration files securely between the unit and the server. Which method is used depends on the environment and equipment available from the phone system. Method 1: Transferring Encrypted Configuration Files Unencrypted configuration file CFG_FILE_KEY1 Encrypted configuration file CFG_FILE_KEY1 To use this method, an encryption key is required to encrypt and decrypt the configuration files. A preset encryption key unique to each unit, an encryption key set by your phone system dealer, etc., is used for the encryption. When the unit downloads an encrypted configuration file, it will decrypt the file using the same encryption key, and then configure the settings automatically. Method 2: Transferring Configuration Files Using HTTPS This method uses SSL, which is commonly used on the Internet, to transfer configuration files between the unit and server. For more secure communication, you can use a root certificate. Notice • To avoid redundant data transfer over the network, important data, such as the encryption key used to encrypt the configuration files and the root certificate for SSL, should be configured through pre-provisioning as much as possible. • It is recommended that you encrypt the data in order to keep the communication secure when transferring configuration files. However, if you are using the units within a secure environment, such as within an intranet, it is not necessary to encrypt the data. Document Version 2010-08 Administrator Guide 27

Section	Page
Table of Contents	3
1 Initial Setup	15
1.1 Setup	16
1.1.1 Factory Defaults	16
1.1.2 Language Selection for the Unit	16
1.1.3 Basic Network Setup	16
1.1.4 Overview of Programming	19
1.1.5 Pre-provisioning	19
1.1.5.1 What is Pre-provisioning?	19
1.1.5.2 Pre-provisioning when Setting Static IP Addresses	20
1.1.5.3 Server for Pre-provisioning	21
1.1.5.4 Pre-provisioning Setting Example	21
1.1.6 Provisioning	23
1.1.6.1 What is Provisioning?	23
1.1.6.2 Protocols for Provisioning	23
1.1.6.3 Configuration File	23
1.1.6.4 Downloading Configuration Files	25
1.1.6.5 Provisioning Server Setting Example	26
1.1.6.6 Encryption	27
1.1.7 Web User Interface Programming	29
1.1.7.1 Password for Web User Interface Programming	29
1.1.7.2 Changing the Language for Web User Interface Programming	29
1.1.8 Phone User Interface Programming	30
1.1.8.1 Changing the Language for Phone User Interface Programming	30
1.1.9 Priority of Setting Methods	30
1.1.10 Other Network Settings	30
1.1.10.1 Firewall and Router Setup	30
1.1.10.2 NAT (Network Address Translation) Setup	31
1.1.10.3 Global Address Detection	32
1.2 Reset and Firmware Update	33
1.2.1 Reset	33
1.2.1.1 Resetting the Network Settings (IP Reset)	33
1.2.1.2 Resetting the Settings Made through the Web User Interface (Reset Web Settings)	34
1.2.2 Firmware Update	34
2 Phone User Interface Programming	35
2.1 Phone User Interface Programming	36
2.1.1 Phone User Interface Feature List and Direct Commands	36
2.1.2 Speed/Duplex Settings	36
2.1.3 VLAN Settings (KX-TGP550 only)	37
2.1.4 IP Reset	38
2.1.5 Terminal Number Settings	39
2.1.6 Reset Web ID/Password	40
3 Web User Interface Programming	41
3.1 Web User Interface Setting List	42
3.2 Programming Instructions	50
3.2.1 Before Accessing the Web User Interface	50
3.2.2 Accessing the Web User Interface	52
3.3 Status	58
3.3.1 Version Information	59
3.3.1.1 Version Information	59
3.3.2 Network Status	60
3.3.2.1 Network Status	60
3.3.3 VoIP Status	62
3.3.3.1 VoIP Status	62
3.4 Network	63
3.4.1 Basic Network Settings	63
3.4.1.1 Connection Mode	64
3.4.1.2 DHCP Settings	64
3.4.1.3 Static Settings	65
3.4.2 Ethernet Port Settings	67
3.4.2.1 Link Speed/Duplex Mode	67
3.4.2.2 VLAN Settings	68
3.4.3 HTTP Client Settings	70
3.4.3.1 HTTP Client Settings	70
3.4.3.2 Proxy Server Settings	71
3.4.4 Global Address Detection	72
3.4.4.1 Global Address Detection	72
3.4.4.2 STUN Server	72
3.4.5 Static NAPT Settings	73
3.4.5.1 Global IP Address	74
3.4.5.2 Enable Global IP Address Usage per Line	74
3.4.5.3 External RTP Port	74
3.5 System	75
3.5.1 Web Language	75
3.5.1.1 Web Language	75
3.5.2 Administrator Password	76
3.5.2.1 Change Administrator Password	76
3.5.3 Change User Password	77
3.5.3.1 Change User Password	77
3.5.4 Web Server Settings	78
3.5.4.1 Web Server Settings	78
3.5.5 Time Adjust Settings	79
3.5.5.1 Synchronization	79
3.5.5.2 Time Server	80
3.5.5.3 Time Zone	80
3.5.5.4 Daylight Saving Time (Summer Time)	80
3.5.5.5 Start Day and Time of DST (Start Day and Time of Summer Time)	81
3.5.5.6 End Day and Time of DST (End Day and Time of Summer Time)	82
3.6 VoIP	83
3.6.1 SIP Settings	83
3.6.1.1 SIP Setting	84
3.6.1.2 Transport Protocol for SIP	84
3.6.2 SIP Settings [Line 1]–[Line 8]	85
3.6.2.1 Phone Number	85
3.6.2.2 SIP Server	86
3.6.2.3 Outbound Proxy Server	87
3.6.2.4 SIP Service Domain	88
3.6.2.5 SIP Source Port	88
3.6.2.6 SIP Authentication	88
3.6.2.7 DNS	89
3.6.2.8 Timer Settings	90
3.6.2.9 Quality of Service (QoS)	91
3.6.2.10 SIP extensions	92
3.6.2.11 Keep Alive	92
3.6.2.12 Security	93
3.6.3 VoIP Settings	93
3.6.3.1 RTP Settings	93
3.6.4 VoIP Settings [Line 1]–[Line 8]	95
3.6.4.1 Quality of Service (QoS)	95
3.6.4.2 Statistical Information	96
3.6.4.3 Jitter Buffer	96
3.6.4.4 DTMF	97
3.6.4.5 Call Hold	98
3.6.4.6 CODEC Settings	98
3.7 Telephone	101
3.7.1 Multi Number Settings	101
3.7.1.1 Grouping Handset/Handset selection for receiving calls	102
3.7.1.2 Handset and Line No. selection for making calls	103
3.7.2 Call Control	104
3.7.2.1 Call Control	105
3.7.2.2 Emergency Call Phone Numbers	106
3.7.2.3 Call Rejection Phone Numbers	106
3.7.3 Call Control [Line 1]–[Line 8]	107
3.7.3.1 Call Control	107
3.7.3.2 Dial Plan	109
3.7.3.3 Call Features	110
3.7.3.4 Call Forward	111
3.7.4 Tone Settings	115
3.7.4.1 Dial Tone	115
3.7.4.2 Busy Tone	116
3.7.4.3 Ringing Tone	116
3.7.4.4 Stutter Tone	117
3.7.4.5 Reorder Tone	117
3.7.4.6 Howler Tone	118
3.7.5 Import Phonebook	118
3.7.5.1 Import Phonebook	119
3.7.6 Export Phonebook	120
3.7.6.1 Export Phonebook	120
3.8 Maintenance	121
3.8.1 Firmware Maintenance	121
3.8.1.1 Firmware Maintenance	121
3.8.2 Local Firmware Update	122
3.8.2.1 Local Firmware Update	122
3.8.3 Provisioning Maintenance	123
3.8.3.1 Provisioning Maintenance	123
3.8.4 Reset to Defaults	125
3.8.5 Restart	126
4 Configuration File Programming	127
4.1 Configuration File Parameter List	128
4.2 General Information on the Configuration Files	134
4.2.1 Configuration File Specifications	134
4.2.2 Configuration File Parameters	135
4.2.3 Characters Available for String Values	136
4.3 System Settings	137
4.3.1 Login Account Settings	137
4.3.2 System Time Settings	138
4.3.3 Syslog Settings	141
4.3.4 Firmware Update Settings	143
4.3.5 Provisioning Settings	145
4.4 Network Settings	152
4.4.1 IP Settings	152
4.4.2 DNS Settings	155
4.4.3 Ethernet Port Settings	157
4.4.4 HTTP Settings	158
4.4.5 Time Adjust Settings	160
4.4.6 STUN Settings	161
4.4.7 Miscellaneous Network Settings	162
4.5 Telephone Settings	163
4.5.1 Call Control Settings	163
4.5.2 Tone Settings	164
4.6 VoIP Settings	169
4.6.1 Codec Settings	169
4.6.2 RTP Settings	172
4.6.3 Miscellaneous VoIP Settings	176
4.7 Line Settings	177
4.7.1 Call Control Settings	177
4.7.2 SIP Settings	180
5 Useful Telephone Functions	201
5.1 Line Settings for Base Unit and Handset	202
5.1.1 Multi Number Settings	202
5.2 Phonebook Import and Export	203
5.2.1 Import/Export Operation	206
5.2.2 Editing with Microsoft Excel	207
5.2.3 Exporting Data from Microsoft Outlook	209
5.3 Dial Plan	209
5.3.1 Dial Plan Settings	210
6 Firmware Update	215
6.1 Firmware Server Setup	216
6.2 Firmware Update Settings	216
6.3 Executing Firmware Update	217
6.4 Local Firmware Update	217
7 Troubleshooting	219
7.1 Troubleshooting	220
8 Configuration File Examples	227
8.1 Simplified Example of the Configuration File	228
8.2 Comprehensive Example of the Configuration File	229
8.2.1 Codec Settings for G729A only	236
8.3 Example with Incorrect Descriptions	237
9 Open Source Software	239
10 Appendix	247
10.1 Revision History	248
10.1.1 KX-TGP500/KX-TGP550 Software File Version 12.04/22.04 or later	248
Index	249
Numerics	250
A	250
B	250
C	250
D	250
E	251
F	251
G	251
H	251
I	251
J	251
K	251
L	251
M	252
N	252
O	252
P	252
Q	252
R	252
S	253
T	254
U	254
V	254

Match case Limit results 1 per page

http://prov.example.com/Panasonic/Config0080F0111111.cfg

The unit with the MAC address 0080F0222222 accesses the following URLs:

http://prov.example.com/Panasonic/ConfigCommon.cfg

http://prov.example.com/Panasonic/Config0080F0222222.cfg

Example Provisioning Direction from the Server

The following figure shows an example NOTIFY message from the server, directing the units to perform

provisioning. The text "check-sync" is specified for "

CFG_RESYNC_FROM_SIP

NOTIFY sip:[email protected] SIP/2.0

Via: SIP/2.0/UDP xxx.xxx.xxx.xxx:5060;branch=abcdef-ghijkl

From: sip:[email protected]

To: sip:[email protected]

Date: Thu, 1 Jan 2009 01:01:01 GMT

Call-ID: 123456-1234567912345678

CSeq: 1 NOTIFY

Contact: sip:xxx.xxx.xxx.xxx:5060

Event: check-sync

Content-Length: 0

1.1.6.6

Encryption

Secure Provisioning Methods

In order to perform provisioning securely, there are 2 methods for transferring configuration files securely

between the unit and the server.

Which method is used depends on the environment and equipment available from the phone system.

Method 1: Transferring Encrypted Configuration Files

Unencrypted

configuration

file

Encrypted

configuration

file

CFG_FILE_KEY1

To use this method, an encryption key is required to encrypt and decrypt the configuration files. A preset

encryption key unique to each unit, an encryption key set by your phone system dealer, etc., is used for the

encryption. When the unit downloads an encrypted configuration file, it will decrypt the file using the same

encryption key, and then configure the settings automatically.

Method 2: Transferring Configuration Files Using HTTPS

This method uses SSL, which is commonly used on the Internet, to transfer configuration files between the

unit and server. For more secure communication, you can use a root certificate.

Notice

•

To avoid redundant data transfer over the network, important data, such as the encryption key used

to encrypt the configuration files and the root certificate for SSL, should be configured through

pre-provisioning as much as possible.

•

It is recommended that you encrypt the data in order to keep the communication secure when

transferring configuration files.

However, if you are using the units within a secure environment, such as within an intranet, it is not

necessary to encrypt the data.

Document Version

2010-08

Administrator Guide

1.1.6 Provisioning