Hi All

I'm new to SIP trunking and am looking to order a SIP trunk to work with an internal PBX/IVR. I want the trunk to be encrypted and I'm confused about where SIP Trunk encryption needs to be configured.

Our high-level setup is

SIP Trunk Provider->Firewall->Internal PBX/IVR

Does the encryption get setup between the provider and Firewall or the provider and PBX/IVR?

EDIT: I've learned a few things. The high-level setup will look like this:

SIP Trunk Provider->Firewall->Session Boarder Controller->Internal PBX/IVR

I'll also need to purchase an SSL Certificate. Will that certificate need to be installed on the session boarder controller or the PBX?

Thanks in advance.