Eyeball's AnyFirewall technology is the most comprehensive
implementation of STUN, TURN and ICE, providing 100 percent
firewall and NAT traversal for your IP communication applications and devices.
The IETF standards and drafts: STUN, TURN and ICE
Provide NAT traversal protocols and techniques
Have some details for end-point implementation
Address a number of important call completion scenarios
and issues
STUN TURN ICE API
Interactive Connectivity Establishment ICE provides a SIP offer/answer model for end-points to
exchange multiple candidate IP addresses and ports (such as private
address and TURN server address) so that end-points can always establish
a connection between them. For TURN, Eyeball Firewall Server supports
UDP and TCP transport. It also supports HTTP/HTTPS tunnelling for all
communications such as SIP signalling, and media data.
STUN helps an end-point to discover whether it is behind a
NAT/firewall and determines the public IP address and type of the firewall. It is helpful in establishing peer-to-peer calls between
end-points where at least one of the end-points is behind NAT or firewall.
TURN provides a far-end NAT traversal technique where a media relay server
connected directly to public Internet is used to help media transport
between end-points.
AnyFirewall Engine Offers:
"Five 9s" call completion (99.999%) through NATs, firewalls,
UPnP gateways and web proxies
99.4% peer-to-peer call completion in UDP networks
Signaling and media transport including VoIP and video calls, IM
and file-transfer
IETF standards STUN, TURN, and ICE API
Seamless user experience: auto detection and configuration
Fast call completion; less than 200ms
AnyFirewall Server Offers:
Standards-based NAT and firewall traversal server for VoIP and
IM applications
Most comprehensive STUN, TURN and ICE server
implementation
Scalable firewall traversal for large deployments
+97% of calls use peer-to-peer media transport
High performance hot swap cluster design
Carrier-grade server with load-balancing and fault-tolerance
AnyFirewall Engine
Standards & Protocols
RFC 3261 (SIP: Session Initiation Protocol)
RFC 2327 (SDP: Session Description
Protocol)
RFC 3489 (STUN - Simple Traversal of UDP
through NATs)
RFC 3581 (An Extension to SIP for Symmetric
Response Routing)
draft-IETF-behave-turn (Obtaining
Relay Addresses from STUN)
draft-IETF-mmusic-ice ICE (A Methodology
for NAT Traversal for Offer/Answer Protocols)
draft-IETF-sipping-nat-scenarios(Best
Current Practices for NAT Traversal for SIP)
draft-IETF-behave-rfc3489bis (STUN version bis)
UPNP Forum (Internet Gateway Device (IGD)
Standardized Device Control Protocol V 1.0)
ICE SDK for VoIP Firewall/Nat Traversal
Eyeball AnyFirewall Engine is a software solution, based on
Eyeball's patented AnyFirewall™ Technology, making it easy and
cost-effective to incorporate NAT traversal into your VoIP
applications or devices. It supports integration with third-party
components such as SIP (or JINGLE) stacks, RTP libraries, and
voice/video engines for rapid development of feature-rich
applications.
Call Completion is the missing link for widespread VoIP adoption
"On average, 20% of VoIP subscribers are
behind hard-to-traverse symmetric NATs, and more than 33% of all
calls need to traverse NATs."
VoIP Security Workshop Berlin, Germany, June
1, 2006
