Category: News

Splynx Sage One Integration

Vlad

After a recent integration with Sage One, Splynx allows Internet and Voice providers to manage the business more efficiently. It is possible to automate the accounting process synchronization easily.

In this article, we would like to share the information on how Splynx synchronizes with Sage One and other accounting platforms.

It is important to understand how the synchronization works. This process can be divided into 3 steps.

First of all, we push out Items from Sage One to Splynx, as they will help us to identify and track account numbers, to see where transactions go when we create certain services, etc.

Everything is managed inside Splynx, so we take customers from Splynx’s database and push them out to Sage One. While Items are synchronized once, the customers are synchronized every hour. It is also possible to enforce this process by pressing the button ‘Customers’ in Config > Integrations > Splynx Sageone Accounting, so you will be able to push customers into Sage One instantly.

The second step is the synchronization of Invoices and Transactions with correct account numbers by pushing them out to Sage One. This is an automated process, however, you can always enforce the synchronization by clicking ‘Invoices’ in Config > Integrations > Splynx Sageone Accounting.

The last step is to receive payments. They are done inside the Sage One, you can easily connect your bank account or Sage Pay and push them out, so the invoices will be immediately marked as ‘Paid’ in Splynx.

 Please review the video description to see the Sage One integration in action:

Should you have any questions or further information is needed, please contact us or schedule a call with our engineer.

Voip CDR auto processing from FTP server in Splynx

Vlad

Nowadays every business is seeking to achieve the minimization of manual effort in the essential processes. Great news for our customers, who need the Voice billing engine to rate VoIP calls, LTE data transfers or work with full mobile services. Starting from Splynx v.2.3 it is now possible to automate the CDRs processing.

Our voice billing engine allows to automatically import the CDRs from your provider’s FTP server to charge the customers and print the register of calls in their invoices.

The process is quite similar to the manual CDR import, however, now it is possible to import multiple CDRs at once. To configure the automatic import from FTP server, first of all, we need to add the “Import Data Source” in the system.  This can be done at Config > Voice > Import Data Source.   

In this menu, we need to add the import source for our CDRs and the folder path. There are 3 possible types of data source:

  • FTP – we need to set a server host, port, your credentials
  • SFTP – the same parameters as for FTP plus RSA private key
  • Local – if you select “Local” then you will need to set only Title and Folder path

The next step is the configuration of CDR autoprocessing.

After the selection of recently added Data Source, we need to specify the file name pattern to process all the files that have pattern entrances in a file name. The system uses Regex for filtering the file names (PCRE syntax). The examples can be found here.

Pattern Description
AB Will filter the file names that have ‘AB’ symbols
CDR Will match all 3 files
2019 Will match the first two files which contain ‘2019’ in their names
516891[A-Z] Will match the first two files with matches 516891F, 516891C
516891[F2] Will match the first and the third files with matches 516891F, 5168912
516891[F2]-\d{6} Will match only the first one

The auto processing frequency is set by the option “Launch time interval“, it allows you to choose the suitable time interval.

In the last step, we choose the required columns for the import, such as Source, Datetime(or separate Date, Time columns), Destination, Duration, etc. Note that the number of columns and their order should be the same as it is in the imported file.

Once the Auto CDR processing is configured, you will be able to start it manually or the process will be automatically started at the previously scheduled time frame. In case something is failed during the import, it is possible to see the History log or even reproduce the errors.

Should you have any questions regarding the configuration or need assistance, feel free to contact us or schedule a call with our engineer.

Juniper Radius configuration with variables

Alexander Vishnyakov

This article is the second part of the Juniper MX Radius configuration tutorial – https://splynx.com/4873/radius-juniper-mx-configuration/

In the first article, speed limitations were set by two Juniper Radius attributes

ERX-Ingress-Policy-Name = “{{ tariff_name }}”
ERX-Egress-Policy-Name = “{{ tariff_name }}”

These attributes matched the Juniper firewall filter/policy to tariff name in Splynx.

We can set up an advanced option when tariff names and firewall filters matching is not involved. The setup is quite advanced, but also elegant, variables are used to define policies and speed.

RADIUS
Let’s start again with basic Radius configuration :


profile RAD {
authentication-order radius;
domain-name-server {
8.8.4.4;
8.8.8.8;
}
radius {
authentication-server 192.168.1.5;
accounting-server 192.168.1.5;
options {
nas-identifier JUN;
accounting-session-id-format decimal;
}
}
radius-server {
192.168.1.5 {
secret "$9$bLYJUjHqPTz7-UiHqQzRhcSvW"; ## SECRET-DATA
source-address 192.168.1.6;
}
}
accounting {
order radius;
immediate-update;
coa-immediate-update;
address-change-immediate-update;
update-interval 10;
statistics volume-time;
}
}

 

Important is to apply the access profile in global configuration :
access-profile RAD

DYNAMIC PROFILE
Second part is defining dynamic profiles using variables.

svc-local-pppoe {
variables {
var-bw-download;
var-bw-upload;
var-ff-out-download {
equals "'INET-' ## $var-bw-download ## '-CLIENT-DOWNLOAD'";
uid;
}
var-ff-in-upload {
equals "'INET-' ## $var-bw-upload ## '-CLIENT-UPLOAD'";
uid;
}
var-plr-download {
equals "'plr-' ## $var-bw-download";
uid;
}
var-plr-upload {
equals "'plr-' ## $var-bw-upload";
uid;
}
}
interfaces {
pp0 {
unit "$junos-interface-unit" {
family inet {
filter {
input "$var-ff-out-download" precedence 100;
output "$var-ff-in-upload" precedence 100;
}
}
family inet6 {
filter {
input "$var-ff-out-download" precedence 100;
output "$var-ff-in-upload" precedence 100;
}
}
}
}
}

As you can see we can define policies for IPv4 and IPv6 customers.
Juniper Radius attribute that Splynx should send to Juniper MX router is

RADIUS ATTRIBUTE :

ERX-Service-Activate:1 = “svc-local-pppoe(3072000,2048000)”
where 3072000 is download speed and 2048000 is upload speed.
It means that Juniper will set var-bw-download = 3072000 and var-bw-upload = 2048000. Then it will var-ff-out-download and var-ff-in-upload variables and set it to input and output filter names on the pp0 interface.

SETTING FIREWALL
The last step is to define Filter rules


firewall {
family inet {
filter "$var-ff-in-upload" {
interface-specific;
term POLICE {
then {
policer "$var-plr-upload";
service-accounting;
service-filter-hit;
accept;
}
}
term SERVICE-FILTER-HIT {
from {
service-filter-hit;
}
then accept;
}
}
filter "$var-ff-out-download" {
interface-specific;
term POLICE {
then {
policer "$var-plr-download";
service-accounting;
service-filter-hit;
accept;
}
}
term SERVICE-FILTER-HIT {
from {
service-filter-hit;
}
then accept;
}
}
}
policer "$var-plr-download" {
logical-interface-policer;
if-exceeding {
bandwidth-limit "$var-bw-download";
burst-size-limit 1m;
}
then discard;
}
policer "$var-plr-upload" {
logical-interface-policer;
if-exceeding {
bandwidth-limit "$var-bw-upload";
burst-size-limit 1m;
}
then discard;
}
}
}

$var-plr-download and $var-plr-upload were created using values from Juniper Radius attribute ERX-Service-Activate:1. We create dynamic policers using these values and then apply them in dynamic filters.

If you have any questions regarding Juniper Radius configuration, please feel free to ask us at support@splynx.com

Radius Juniper MX configuration

Alexander Vishnyakov

Juniper Networks is one of leading vendors producing networking equipment. Together with Cisco, Juniper defines where networks are moving. The company sells different solutions starting from routers, switches and up to software-defined products such as Open Contrail.

In Internet provider’s network, Juniper is mainly used as a BRAS equipment (broadband remote access server). The MX series routers ideally fit as BRAS with the ability to process gigabits and hundreds of gigabits of traffic together with providing such access services as PPPoE, bandwidth limitation, policing and NAT.

We have deployed Splynx in different networks running on Juniper MX80, MX104 and MX960 routers. JunOS versions from 14 to 18.
The configuration below should work on any MX router and is based on a combination of Dynamic profiles and Policy names.

1. RADIUS SERVER definition
In the first step we should define the Access and describe Radius configuration. Radius server IP is 192.168.1.5 and Juniper router IPs is 192.168.1.6.

access {
profile Splynx {
accounting-order radius;
authentication-order radius;
radius {
authentication-server 192.168.1.5;
accounting-server 192.168.1.5;
options {
nas-identifier JUN;
accounting-session-id-format decimal;
}
}
radius-server {
192.168.1.5 {
secret "$9$TFCuIEyMWxO1hSrlMWJGUHP5TQ3/ApmPO1Rcle"; ## SECRET-DATA
timeout 300;
retry 3;
max-outstanding-requests 1000;
source-address 192.168.1.6;
}
}
accounting {
order radius;
accounting-stop-on-failure;
accounting-stop-on-access-deny;
immediate-update;
coa-immediate-update;
update-interval 10;
statistics volume-time;
}
}
}

The next line in configuration should be setting the access profile Splynx to Juniper MX router up level configuration:

access-profile Splynx;

2. DYNAMIC PROFILES
The next step is to define Dynamic profiles. This configuration can be a bit tricky and complex. Depends on how complex is your overall setup, how VLANs are organized, if there are Port Aggregations or PPPoE services are running directly on Gigabit and 10G Ethernet interfaces. The example below shows the PPPoE profile that is ready for dynamic VLANs that are running on Aggregated interface ae0.

dynamic-profiles {
PPPOE {
interfaces {
demux0 {
interface-mib;
unit "$junos-interface-unit" {
vlan-id "$junos-vlan-id";
family pppoe {
duplicate-protection;
dynamic-profile ppp-profile;
max-sessions 16000;
}
}
}
}
}
ppp-profile {
interfaces {
pp0 {
interface-mib;
unit "$junos-interface-unit" {
no-traps;
ppp-options {
pap;
}
pppoe-options {
underlying-interface "$junos-underlying-interface";
server;
}
keepalives interval 30;
family inet {
rpf-check;
filter {
input "$junos-input-filter";
output "$junos-output-filter";
}
unnumbered-address lo0.0;
}
}
}
}
}
}

Few words to the configuration above – as you can see dynamic profile ppp-profile is encapsulated into other dynamic profile PPPoE. The speed limitation filters are set in dynamic ppp-profile interface pp0.
When dynamic profiles are defined, we apply the profile PPPOE on AE0 interface :

ae0 {
description "PPPOE LINK aggregation ";
flexible-vlan-tagging;
auto-configure {
vlan-ranges {
dynamic-profile PPPOE {
accept pppoe;
ranges {
100-200;
}
}
}
remove-when-no-subscribers;
}
mtu 4000;
encapsulation flexible-ethernet-services;
aggregated-ether-options {
lacp {
active;
}
}
}

3. SPEED LIMITATIONS
The last step in configuration is to define the Firewall filter and policers to control subscriber’s bandwidth.
Here is the example of filter and policer for 10 Mbps plan :

firewall {
family inet {
filter 10Mbps {
interface-specific;
term 1 {
then policer p_10Mbps_limit;
accept;
}
}
}
policer p_10Mbps_limit {
if-exceeding {
bandwidth-limit 10m;
burst-size-limit 1m;
}
then discard;
}

4. JUNIPER RADIUS ATTRIBUTES
The attributes that are used to set the Filter name in Radius Access accept are :

ERX-Ingress-Policy-Name = "{{ tariff_name }}"
ERX-Egress-Policy-Name = "{{ tariff_name }}"

These attributes are configured in Splynx -> Config -> Radius -> Selection of NAS type -> Juniper -> Rate-limit attributes

Tariff name should be set in Splynx “10Mbps” as on picture below :

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Should you have any questions regarding Juniper MX configuration or further information is needed, please contact us or schedule a call with our engineer.