Identifying oice traffic using ACL's

Unanswered Question
Oct 13th, 2009

Hi ,

Can you please advise how to identify Voice traffic using ACL's.

I need to identify voice traffic and then use route map to route traffic over preferred path.

Any sample config will help.

thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
virverma Wed, 10/14/2009 - 12:19

You can try this,

you can use this ACL to pick up voice and H323 signalling packets.

access-list 102 permit udp any any range 16384 37276

access-list 103 permit tcp any eq 1720 any

access-list 103 permit tcp any any eq 1720

Where,

access-list 102 matches VoIP traffic based on the UDP port range.

access-list 103 matches VoIP signaling protocol. In this case, H.323 V2 is uesd with the

fast start feature.

Then we just need to apply this to a route-map and the interface:

a) Define a route-map for traffic to go to next-hop 6.6.6.6

route-map equal-access permit 10

match ip address 102

set ip default next-hop 6.6.6.6

route-map equal-access permit 20

match ip address 103

set ip default next-hop 6.6.6.6

b) apply it to the inside (where the voice is connected to) interface:

int Ethernet0/0

ip policy route-map equal-access

s.nasheet Wed, 10/14/2009 - 12:28

Many thanks for the response.

Just want to confirm that using these acl line , if I mark all above UDP and TCP port , then all voice traffic will be catch by these ACL.

I am asking becasue in VOICE there are many other protocols. like SIP, TRP .

Thanks

virverma Wed, 10/14/2009 - 12:30

all I can say, voice traffic works on ports,

so you can try mentioning different ports

Actions

This Discussion