I want to be able to have my IP phones and IP communicator machines to be able to register and use CME without having to VPN in. Seems like the port usage is rather complicated but this is what I have come up with so far.
access-list 101 permit udp any host 22.214.171.124 eq tftp
access-list 101 permit tcp any host 126.96.36.199 eq www
access-list 101 permit tcp any host 188.8.131.52 eq 2000
access-list 101 permit udp any host 184.108.40.206 range 24576 32768
Int the example below, 220.127.116.11 is the public IP of my CME box and 18.104.22.168 is the tftp server where I have copied and edited the config files with the public IP of the CME.
As of now the phones can register and dial-out but I am getting no audio.
Also, I see the phones requesting .tlv files from the tftp but I only have cnf files. What are the .tlv files for?
the issuse here is u have ACL applied on the outside interface as we know at the end of evry ACL there is an implicit deny now as u stated the phone rigister and dial but no audio audio use random upd port negocited between phones and CME this need to be solved in two
one way not good at all which u oped all upd traffic betwen 16xx 32xx
the best way is to have application inspection in ur case should be CBAC which is abalable on IOS firewall features if u use ISR mostly u have this feature this will open this port based on the seesion and closed after the end of the session (application inspection)
SIP traces provide key information in troubleshooting SIP Trunks, SIP
endpoints and other SIP related issues. Even though these traces are in
clear text, these texts can be gibberish unless you understand fully
what they mean. This document attempts to br...
Please find the attached HTML document, download and open it on your PC.
This provides an easy to use form where you simply answer a few
questions and it will render the proper jabber-config.xml file for you
to copy/paste. There is built in logic to verif...
[toc:faq]CUCM Database Replication is an area in which Cisco customers
and partners have asked for more in-depth training in being able to
properly assess a replication problem and potentially resolve an issue
without involving TAC. This document discusse...