CCM cluster consist of publisher server (CCM 4.1(2)sr1 ) and three subscriber servers. Problem is that subscribers generate large traffic (microsoft-ds, port 445, 200-300 kbps) to publisher server, constantly.
What could be a problem and is this port needed for normal communication between CCM servers?
445 isn't SSL as suggested - (SSL being port 443 by default)..
445 is MS NetBIOS-over-TCP stuff... things that show up as that can be anything from Outlook, to RPC calls, to file share access.
If you go into computer management on the publisher then into 'Shared Folders' and have a look in 'Sessions' and 'Open Files' this may give you some clue as to what's being access if it is file data... CDR data is one thing I can think of that would be transferred in this way... this is pulled or pushed (can't remember which) to a UNC share a regular intervals.
Remember that they recommend something like 8MB + 40ms max latency if you split a cluster - maybe this is why?
Please rate helpful posts...
Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
I pay attention on cdr, and I don`t think that this is a problem. cdr flat text file is generated and send every 60 sec to publisher, and size of file is max 15 KB. And this is in heavy load conditions.
And yes, I forgot to say, this is noticed after upgrade from CCM 3.3.3 to current version (!?)
I agree with Aaron on that one. 3 subscibers are going to generate a good deal of CDR which is stored in a flat file on the the Subs. It's then transferred via admin shares to the publisher where the CDR insert service puts them into the database. If you feel this might be malicious though, then make sure you have the CSA installed on the servers in your cluster.
You have reached the Cisco Logistics Support Center.. To Check Status of
your RMA, visit Product Returns & Replacements (RMA). Need help? Contact
us by Phone or Email. North Americas Phone: 1800 553 2447 Option 4
Email: firstname.lastname@example.org Europe Phone: +3...
The short answer is that you don't.... That isn't entirely true while at
the same time it kind of is, but for the most part you don't configure
the softkeys. You enable or disable them via TCL. Here is the long
answer. Be sure to read the whole thing or e...
Topology: IP Phone > Switches > Microsoft NPS setup to forward 802.1x
proxy to > ISE 2.1 patch 3 Authentication: EAP-TLS using Cisco MIC SANs
Phone Models 802.1X support? 802.1x flavor Addtl Comment EAP-MD5 EAP-TLS
Cisco 3905 Y Y N Cisco 6911 Y Y N Cisco ...