03-08-2010 08:15 PM - edited 03-17-2019 09:57 PM
Based on multiple Cisco docs including Cisco VT Advantage Release Notes and CUCM 7.x SRND I know that the UDP port that VT Advantage should use for video streams should be UDP port 5445. However, I also had one of field engineers report they saw UDP port 5446 when trying to setup ACLs. I have also seen a few references UDP port 5446 and Cisco VTA when searching this forum.
I have a couple of questions I was hoping someone could answer.
1. Can someone clarify if VTA uses UDP port 5446 and if so, what is it used for? Specifically, what would be VTA be communicating with when using this port.
2. I am trying to put together an ACL for a customer. The focus of the ACL is to protect the voice access network from the data network. Clearly I have to open up TCP 4224 for CAST. But I need to contend with the video stream from VTA as well. Initially the customer will have a few Cisco 7985 phones deployed and will probably deploy the 9971 stations at some point. I believe that the 7985 phones will use a range for the video RTP but if I knew for certain the VTA will always send/receive using UDP port 5445 (or even range 5445 5446) then I should still be OK. Has anyone employed an ACL in this fashion? Anyone know if the VTA port(s) are consistent and predicable for video RTP?
I would test but I don't have a 7985 in my lab.
Thanks in advance.
Regards,
Bill
Please remember to rate helpful responses and identify
Solved! Go to Solution.
03-12-2010 05:26 AM
Hi Bill,
VTA does use both UDP 5446 and 5445. I have some issues at the moment with two VTAs talking across the WAN and have been capturing some traffic. I have seen on a successful video call that there is a single packet using UDP 5446 between the hosts and then the actual video stream uses 5445.
I have allowed both ports bi-directionally on the Firewalls between sites and video works without any issues.
Cheers,
Phil
03-12-2010 05:26 AM
Hi Bill,
VTA does use both UDP 5446 and 5445. I have some issues at the moment with two VTAs talking across the WAN and have been capturing some traffic. I have seen on a successful video call that there is a single packet using UDP 5446 between the hosts and then the actual video stream uses 5445.
I have allowed both ports bi-directionally on the Firewalls between sites and video works without any issues.
Cheers,
Phil
03-12-2010 06:22 AM
Phil,
Thank you for confirming this for me. One packet? Interesting, I wonder what that is all about. Anyway, thanks for taking the time to check it out and letting us know.
Regards,
Bill
Please remember to rate helpful responses and identify
03-12-2010 05:34 AM
Hello William.
Point number 1, I can say that the Video Advantage uses only UDP port 5445 according to the multiple captures I have made through wireshark, we utilize the advantage video for video conferencing with Polycom equipment and are working perfectly, annex you a link that can help you too.
http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/srnd/7x/endpnts.html#wpxref41487):
Regards
Edwards L. Fuenmayor
03-12-2010 06:29 AM
Edwards,
What is interesting here is that I also have ran several wireshark traces when first testing VTA and I only ever saw UDP 5445. My field engineer saw 5446 and so have other folks on this forum. So, I definitely believe 5446 pops up somewhere, but I dont' know what sequence of events needs to transpire to elicit that packet. Could be related to software version.
Anyway, I am going with 5445 and 5446 on the VTA for now. I am still curious as to the "why" but I guess I'll try to figure that out later.
Thanks for taking the time to answer.
Regards,
Bill
Please remember to rate helpful responses and identify
03-12-2010 08:01 AM
Hi William
searching the web I found the following:
UDP port 5445 needs to be opened if Cisco Unified Video Advantage (UVA) is enabled on the IP phone.
http://www.cisco.com/en/US/solutions/collateral/ns340/ns517/ns430/ns855/guide_c07-495139.html
for CAST TCP port 4224 Bi-directional communication is required.
http://www.cisco.com/en/US/docs/video/cuva/1_0_2/administration/guide/vunder.html
the answers above is correct
07-12-2017 08:30 AM
I realise that this is a very old thread for an old product, but incidentally I noticed UDP 21000 and 21001 from a desktop running CUVA. It seems that these high numbered ports are needed in version 2.3 of the product, but I can't confirm whether this is in addition to UDP 5445/5446 or as a replacement.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide