Multisite UC500 (5 Sites) using MPLS instead of DMVPN?

Unanswered Question
Aug 10th, 2010
User Badges:

We are deploying 5 UC500s - 2 UC560, 3 UC540W in 5 different locations.  Each of these locations will have a direct internet access via the WAN port of the UC500 as well as a MPLS router on the LAN to route traffic destined for the 4 other branches.  We would like to send the intersite voice across the MPLS as we are able to use QOS and it is a seperate circuit and without internet traffic whatsoever.

What we are trying to accomplish:

UC500---->WAN PORT---->DIA---->internet only

UC500---->LAN/EXP(OR SWITCH) PORT---->MPLS ROUTER---->other branches and voice traffic

Obviously using routing statements to specify that x network is directed to MPLS router on the LAN and is routed to internet gateway on wan port.

We do not want to use internet as some sites also have very small internet bandwith (512k-1mb) while the MPLS pipe is considerably bigger and as I had mentioned before - prioritized for this voice traffic.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Mario Garcia Tue, 08/10/2010 - 23:07
User Badges:

Hi John,

To route voice traffic to the different sites, you are going to want to setup dial peers that point to the different sites.

I do not know if you can do this via CCA, but definitely via CLI.  If you plan to continue to use CCA for UC management make sure to use dial peers that are considered out of band, to ensure CCA functionality.

For example

dial-peer voice 5011 voip

description site 2 <---------------- Any description you want to give the dial-peer, not needed

destination-pattern xxxx <--------------- Destination pattern for remote site, depending on the extension scheme this would change

session target ipv4:X.X.X.X <----------- IP of remote UC

dtmf-relay h245-alphanumeric

ip qos dscp cs5 media

no vad

Here is a link to CCA Out of Band configuration guidelines



Steven DiStefano Thu, 08/12/2010 - 03:57
User Badges:
  • Blue, 1500 points or more

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman","serif";}

Today the CCA Multisite Manager wants to configure BOTH the IPsec VPN Tunnel mesh among all sites using FE 0/0 (UC500 WAN) AND the Dial peer / translation rules/ CAC  for multisite extension dialing, peer to peer (using H.323 which supports Video as well as voice).  Since it uses the WAN, it also makes adjustments to the Firewall ACLs and relies on unique subnets (Data VLAN) at each site.

In this case, there is no mention of data VLAN sharing requirement at all, and only discusses the requirement to support voice traffic over a private MPLS network router on the UC500 LAN (not WAN) which CCA MSM doesn’t support.

We have had requests to separate extension dialing from the multisite VPNs so this type of configuration can be accommodated, but it wasn’t high enough on the priority list to make it into the 2.2.5 release.   It is on the list for Spring 2011 (confirmed with Anna a few hours ago).

Since these are UC540/UC560, we don’t want to encourage OOB CLI, but in this case it appears there is much choice.   Maulik and I produced some Multisite docs and posted them on the support community about a year ago and they are still valid. 

For the VPN Data interconnect section and may find yourself having to improvise a bit with the LAN side routing statements

Scott Martin Thu, 08/12/2010 - 23:40
User Badges:

I have successfully done this across a few customers with 3 sites over an MPLS WAN, however we use the UC500 WAN port to connect to the MPLS routers (separate WAN subnet), then the local internet router connects to a UC500 LAN port on the same subnet (we use x.x.x.254), then setting the UC500 to use the internet router as the default gateway, all clients use the UC500 for the default gateway. While this results in a double hop gateway, it seems to work quite well, and you have additional configuration options on the UC500 WAN interface for routing, QoS, etc. for your MPLS environment. I believe the WAN routed port is more efficient for high bandwidth also.

We did it all with CLI by the way, as this was long before the multisite CCA option even existed.

Best of luck.


This Discussion