Topology Hiding for IWF with an Internal Home-Realm
You can configure the Oracle® Enterprise Session Border Controller to mask the IP address of the originating caller in the SIP From and/or P-Asserted-Identity headers when calls are placed from H.323 to SIP endpoints.
The option NoPAssertedID checks for incoming SETUP messages have the presentation indicator set to restricted and instructs the Oracle® Enterprise Session Border Controller to send a Privacy header without the P-Asserted-Identity and not to make the From header anonymous.
The option replace-call-origin-ip removes the calling party’s IP address in the SIP From header. The IP address from the internal home realm is used instead.
The topology hiding feature uses the presentation indicator field from an inbound H.323 setup message to determine if/how the headers will be masked. The following table summarizes the configurable Oracle® Enterprise Session Border Controller parameters and the values for the From and P-asserted-identity headers.
| H.255 Presentation Indicator Setting | P-Asserted-Identity Header Value | From Header Value | SD Session Agent Option |
|---|---|---|---|
| Allow | IP address from home realm of SD SIP Config | H.255 Calling Party IP/Port | No Option Set |
| Allow | IP address from home realm of SD SIP Config | IP address of Home Realm SIP-Interface | NoPAssertedID |
| Allow | IP address from home realm of SD SIP Config | IP address of Home Realm SIP-Interface | replace-call-origin-ip |
| Allow | IP address from home realm of SD SIP Config | IP address of Home Realm SIP-Interface | replace-call-origin-ip, NoPAssertedID |
| Restricted | PAI Header not present | Anonymous | No Option Set |
| Restricted | PAI Header not present | Anonymous | NoPAssertedID |
| Restricted | PAI Header not present | Anonymous | replace-call-origin-ip |
| Restricted | PAI Header not present | Anonymous | NoPAssertedID, replace-call-origin-ip |
