TANDBERG Gatekeeper Network Card User Manual


 
TANDBERG Gatekeeper User Guide
Page 53 of 105
13. Call Policy
13.1. About Call Policy
Your TANDBERG Gatekeeper allows you to set up policy to control which calls are allowed and even
redirect selected calls to different destinations. You specify this policy by uploading a script written in the
Call Processing Language (CPL). Each time a call is made the Gatekeeper executes the script to decide,
based on the source and destination of the call, whether to
Proxy the call to its original destination
Redirect the call to a different destination
Reject the call.
The Gatekeeper will only execute scripts for source or destinations which are registered directly with the
system.
13.1.1. Uploading the CPL script
To upload the CPL script, go to Gatekeeper Configuration -> Files. In the Policy section, enter the path of
the file in the CPL file field.
Note: The CPL script cannot be uploaded via the command line interface.
13.1.2. Enabling use of the CPL script
To enable or disable use of the CPL script, either:
issue the command:
xConfiguration Gatekeeper Policy Mode <On/Off>
or go to Gatekeeper Configuration -> Gatekeeper and in the Configuration section, tick or clear the CPL
policy box.
13.1.3. Call Policy and Authentication
Policy interacts with authentication (see section 8.2). If authentication is enabled on the local
Gatekeeper and a call is received from a remote, unauthenticated Gatekeeper, the call's source aliases
will be removed from the call request before it is passed to the policy engine. This is because the
unauthenticated source aliases could be forged and so should not be used for policy decisions in a
secure environment.
13.1.4. CPL Standard
The following sections give details of the Gatekeeper's implementation of the CPL language and should
be read in conjunction with the CPL standard (RFC 3880 [5]).