Introduction

The Oracle® Enterprise Session Border Controller (E-SBC) includes a Personal Profile Manager (PPM) proxy feature. PPM is a web service that runs as part of Avaya Aura Session Manager and Aura System Manager. Local and remote SIP clients may download configuration data from the PPM proxy using SOAP messages over HTTP or HTTPS, enabling soft keys to be customized and contact lists to be loaded. Unfortunately, in enterprise networks certain messages may refer to private IP addresses, which are not routable from remote clients. Acme Packet incorporates an application proxy in the E-SBC for such messages, replacing the internal IP addresses with the E-SBC external SIP interface IP address.

The PPM proxy supports incoming messages over HTTP and HTTPS on a configurable IP address / port. If using HTTPS, the PPM proxy uses a selectable server certificate for Transport Layer Security (TLS).

Remote clients accessing the PPM proxy are authenticated by HTTP digest authentication, using their SIP credentials. The PPM proxy forwards such challenges and responses transparently to the PPM web service for which it is configured.

Since the PPM proxy could potentially be a target of a denial-of-service (DoS) attack, the E-SBC allows you to set DoS rules to protect the proxy port as part of standard configurations. For configuring DoS on the E-SBC, see the chapter on security.