06-08-2010 07:29 AM - edited 03-11-2019 10:56 AM
We have our Voice and Data Vlan segregated by an ASA Firewall. The CallManager sits within the Voice Vlan. The IPT Solution reference network Design Document says;
"By placing a firewall between the Cisco CallManager cluster and both the voice and data networks, you greatly reduce the exposure of the most critical component in the Cisco AVVID network, the call processing agent. The firewall acts as a guardian between all IP devices and the Cisco CallManagers,
ensuring that only specific transactions are allowed."
I'm trying to find a document or configure example so that I can configure the ASA to implement this security design.
Can anyone provide a reference?
thks
06-08-2010 10:35 AM
Alan,
I guess what the document states is ASA's layer 7 inspection engines (in case of call manager, SIP, SCCP and H323).
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/inspect_voicevideo.html
There are also some unified communication features:
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/unified_comm_overview.html
Hope this helps.
Marcin
01-06-2015 10:45 PM
Thanks for your quick support,
we will do the same and let to you know
If we required any extra license for the jabber android..
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide