08-10-2010 07:21 AM - edited 03-16-2019 12:09 AM
Hi dear community,
I would like to know if the ASA have the ability to end SRTP and IPSEC (for securing signalisation) of a MGCP controlled gateway:
CUCM ------- [ASA] ------- Gateway -------(PSTN)-------phones
|
|
IPPhones
My Asa is configured as a phone proxy, and my ipphones are TLS and SRTP enabled... I was asking myself to secure my MGCP gateway by an ipsec tunnels (for the sig only), but i don't know how manage with the RTP coming from my Gateway?
CUCM ---|Sig.TLS|---- [ASA] ---|SIG via IPSEC, RTP via ????|---- Gateway -------(PSTN)-------phones
|
|Sig via TLS|
|RTP via SRTP|
|
IPPhones
Also, could you confirmed that the ASA can ended the ipsec tunnel, and that the MGCP sig would be also encrypted in the TLS session of the CUCM?
CUCM ---|Sig.TLS (for SCCP and MGCP!!)|---- [ASA] ---|SIG via IPSEC, RTP via ????|---- Gateway -------(PSTN)-------phones
|
|Sig via TLS|
|RTP via SRTP|
|
IPPhones
Thx to you,
GreeG
08-10-2010 07:26 AM
Hi Gregory
Phone proxy feature on the ASA only supports now for the SCCP Ip phone and RTP from IP phone. It will not work for any other protocol at this time.
More information on the Phone proxy what is supported
HTH
Sri Gudavalli
08-10-2010 07:39 AM
Thanks for your prompt answering.
ok, so my only way to secure is to open on my ASA:
Right?
Cheers,
greg
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: