Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Call control and Firewall

Hi all,

I have a question with regard to what ports should be open on firewall to allow voice call through.

For example I have two offices one in Sydney and one in Melbourne. The call manager is in sydney. Both offices has pix firewall. Now if sydney office has to make a call to Melbourne office, the Sydney office firewall will allow to pass the voice call as it is going from inside to outside. How about Melbourne office firewall. What need to be done on that firwall to allow a call from outside (Sydney) to inside. If the answer is to open ports from 16XXX to 32XXX, is it not a big threat to the network or is there is any other way to do it.

Tks

1 REPLY

Re: Call control and Firewall

Here is a link to a document which lists the TCP/UDP ports used by CallManager:

http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_tech_note09186a00801a62b9.shtml

Below is a document which describes how to use application inspection to avoid opening a range of ports as you have described above. Application inspection can open ports dynamically based on a given protocols needs. Take a look at the section called Configuring Application Inspection (Fixup). Here you will see sections for SCCP, MGCP, H.323, etc.

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a008017278b.html#wp1078381

Hope this helps.

Brandon

98
Views
0
Helpful
1
Replies
CreatePlease login to create content