03-15-2007 09:04 AM - edited 03-14-2019 08:30 PM
I have configured IP phone encryption phone-to-phone. Now I would like to configure encryption phone to h323 gateways so incoming and outgoing calls are encrypted to/from the gateways. Does anyone have a link or any information about this?
Thanks,
Chris
Solved! Go to Solution.
03-15-2007 03:56 PM
Chris, I didnt mean to say that.
H323 encryption is supported in 4.1,4.2, 5.x etc. You have to have a min. IOS version to support SRTP command under dial-peers.
http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a008068b526.html
03-15-2007 09:23 AM
Yes, its very simple. Enable encryption under the dial peers, using command
"srtp".
If using a MGCP gateway, you have to configure a few commands for MGCP to enable signalling encryption. To setup media encryption for RTP you will have to build a ipsec tunnel to callmanager (pub and sub's).
http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a008068b526.html#wp1123262
HTh
Sankar
PS: please remember to rate posts!
03-15-2007 09:25 AM
Do you know how RTP encryption works with IPCC?
Thanks,
Chris
03-15-2007 09:32 AM
Chris,
CM 4.1 doesnt support encryption on CTI devices. It seems CM 5.x has support for encryption on CTI devices, but i have never setup encryption to IPCC.
03-15-2007 11:06 AM
So this would mean any RTP traffic from IPCC wouldn't be encrypted?
Also, do you know if this is the case in CM 4.2?
Thanks,
Chris
03-15-2007 11:08 AM
Looks like its not supported in 4.2 as well.
http://www.cisco.com/univercd/cc/td/doc/product/voice/c_callmg/4_2/sec_vir/ae/sec423/secuview.htm
Hopefully this is roadmapped for 4.x train in future.
03-15-2007 12:08 PM
So the H323 encryption is only supported in CM5.0 and above?????
Thanks,
Chris
03-15-2007 03:56 PM
Chris, I didnt mean to say that.
H323 encryption is supported in 4.1,4.2, 5.x etc. You have to have a min. IOS version to support SRTP command under dial-peers.
http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a008068b526.html
03-16-2007 08:43 AM
I would discourage srtp/encryption, too many things won't work or have caveats. Give it some time to work out the issues.
03-16-2007 08:53 AM
Can you tell me some of the things that don't work or have caveats?
Thanks,
Chris
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: