Cisco BroadSoft partner solutions
Cisco BroadSoft is a proven market leader in the cloud PBX/unified communications space. Their carrier-grade application software is used by 25 of the top 30 largest global service providers.
TransNexus software products are designed to take full advantage of segmentation capabilities of BroadWorks and BroadWorks Platform-as-a-Service (PaaS) solutions. For example:
- TransNexus services support precise controls based upon service providers, groups and users defined in the BroadWorks and communicated with the SIP X-BroadWorks-DNC field. This enables more granular control over call handling. For example, for specific service providers, groups, or users, you can:
- Blacklist called countries and call forwarding to countries
- Set fraud control threshholds
- Enable/disable services, such as CNAM, reputation service, routing and others
- View call activity reports and analytics
- TransNexus software APIs can be used to automatically keep service providers, groups and users synchronized with BroadWorks.
- TransNexus solutions can initiate a process to tear down fraudulent calls in BroadWorks.
When a SIP INVITE, either inbound or outbound, arrives at the BroadWorks, it sends the invite to the TransNexus software as if it were an actual SIP destination for call completion.
The TransNexus software performs the services configured for the call and returns a SIP message to the BroadWorks according to the result of the services. Here are a few illustrative examples of typical SIP message communications:
|Services||Result||Reply (configurable)||BroadWorks action|
|outbound fraud analysis||no fraud found||SIP 503 Service Unavailable||route call using routing policy|
|outbound fraud analysis||fraud detected||SIP 603 Decline||do not route call, return decline to source|
|outbound routing and fraud analysis||no fraud found||SIP 302 Moved Temporarily||route call using Contact header|
|inbound robocall prevention||not a robocall||SIP 503 Service Unavailable||route call using routing policy|
|inbound robocall prevention with blocking||robocall detected||SIP 603 Decline||do not route call, return decline to source|
|inbound robocall prevention with diversion||robocall detected||SIP 302 Moved Temporarily||route call to CAPTCHA gateway for call screening|
|SHAKEN authentication||authenticated, attested and signed||SIP 302 Moved Temporarily with Identity header||copy Identity header, route call using routing policy|
|SHAKEN verification||identity header and certificate are validated||SIP 302 Moved Temporarily with verstat||copy verstat, route call using routing policy|
Atlantatech selected Cisco BroadSoft and TransNexus NexOSS, as their solution for centralized network management of their hosted VoIP and SIP trunking services.
Vocal IP chose Cisco BroadSoft and TransNexus NexOSS to implement their hosted PBX offering, which gives their customers an end-to-end solution customized to their individual business needs.
Select tabs to view call flows for various call handling scenarios:
If a TransNexus service determines that the call should be blocked, then it returns a SIP 603 Decline message to the BroadWorks.
If you have scenarios where a call might be bad but you’d prefer a less severe alternative to call blocking, you can set up the software to divert the call instead. The default diversion is to the TransNexus CAPTCHA gateway. Here are the steps:
- The call arrives at the BroadWorks.
- The BroadWorks routes the call to the TransNexus software for services.
- If the TransNexus software determines the call should be diverted, it replies to the BroadWorks with a SIP 302 Moved Temporarily. The BroadWorks routes the call to the CAPTCHA gateway.
- The CAPTCHA gateway answers the call and prompts the caller to enter a random two-digit code. If the code is not entered correctly, the CAPTCHA gateway ends the call with a BYE.
- If the code is entered correctly, the CAPTCHA gateway sends a SIP REFER back to the BroadWorks.
- The BroadWorks receives the SIP REFER from the CAPTCHA gateway and sends an INVITE to the called party to complete the call. It also sends an INVITE to the calling party to enable audio codec renegotiation with the called party.
Alternative diversion destinations can be set up. For example, some customers have set up diversion to voicemail.
If there is no fraud detected and TransNexus software is not set up to perform routing services, then the software will return a SIP 503 Service Unavailable to have the BroadWorks route the call using routing policy.
TransNexus software can provide a list of routes for the BroadWorks to use. The list of routes can either be set up as static routes or generated in the TransNexus software using jurisdictional least cost routing.
If there is no fraud detected and TransNexus software is set up to do routing, then the software will return a SIP 302 Moved Temporarily with a list of routes in preference order for the BroadWorks to use.
TransNexus software can provide SHAKEN authentication, verification, and certificate management services.
If SHAKEN authentication is requested, then the TransNexus Authentication Service (AS) will use policy controls to determine the attestation level to use, create a SIP Identity header and insert it into a SIP 302 response to the BroadWorks. The BroadWorks will copy the Identity header from the response into the outbound INVITE using a header manipulation rule.
If AS policies determine that the call should be blocked, then the AS will return a SIP 603 Decline.
If a call has a SHAKEN SIP Header and verification is requested, then the TransNexus Verification Service (VS) will use information in the SIP Header to fetch certificate information from Certificate Repositories for the Certificate Authority and the originating service provider that signed the call. The VS will validate the certificates and use the public key to verify that the call information has not be tampered with or replayed.
For call termination, the VS will generate a SIP 302 with verstat information in the P-Asserted-Identity field. The BroadWorks will copy the verstat information into the terminating INVITE using a header manipulation rule. Depending on the handset, this verstat information may be used to display information to the user about the verification results.
If VS policies determine that the call should be blocked or diverted, then the VS will return either a SIP 603 Decline or SIP 302 Moved Temporarily respectively.
Please contact us for more information, assistance and guidance in connecting your Cisco BroadWorks to TransNexus software products.
This information will only be used to respond to your inquiry. Transnexus will not share your data with any third parties. We will retain your information for as long as needed to retain a record of your inquiry. For more information about how we use personal data, please see our privacy statement.
SIP Analytics® inspects each call before it begins. It’s the fastest, most precise method available to detect and prevent telecom fraud.Learn more