Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1936
Views
5
Helpful
3
Replies

Cisco SSM and CUCM/ CUC

Go to solution
Pragash22
Level 1
Level 1

‎09-10-2020 02:30 AM

Hi All

 

It was mentioned in the documentation that, need to allow below rules between SSM and CUCM nodes

Prerequisites

These ports must be enabled for communication with CSSM:

  • User Interface: HTTPS (port 8443)
  • Product Registration: HTTPS (port 443), HTTP (port 80)
  • Communication to CSSM: HTTPS (tools.cisco.com, api.cisco.com, cloudsso.cisco.com), port 443

Ref link - https://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/212883-cucm-smart-licensing-mediated-model.html

 

  We have the SSM on Prem and I would like to know when enabling firewall rule between SSM and CUCM/CUC
1. Does that need to be Bi-Directional rule? If No, Just want to know who initiate the session, Is it always Call manager?
2. Lets say If I have multiple nodes (1 Pub and 4 Sub - all subs are located at separate locations with different subnets) - Does all these Subs need to have the same rules enabled?

Kind regards

Pragash

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Pragash22
Level 1
Level 1
In response to Nithin Eluvathingal

‎10-01-2020 07:14 PM

Hi Nithin
Thank you for your reply.


I generated this on Lab and checked the packet flow to see how it works.

Always the Publisher initiate the request though if you sync on-Prem Satallite with Cisco cloud.

Once you have synced with the On-Prem to Cisco cloud, on-prem SSM will not initiate a request to CCM and on-Prem SSM wait for the CCM to initiate the request.

 

Kind regards

Pragash

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Nithin Eluvathingal
VIP
VIP

‎09-10-2020 06:35 AM - edited ‎09-12-2020 01:39 AM

1. Does that need to be Bi-Directional rule? If No, Just want to know who initiate the session, Is it always Call manager?

Since no direction mentioned in the guide, better to keep Bidirectional.
2. Lets say If I have multiple nodes (1 Pub and 4 Sub - all subs are located at separate locations with different subnets) - Does all these Subs need to have the same rules enabled?

 only publisher need to be considered. Publisher the licensing  Node. 



Response Signature


Go to solution
Pragash22
Level 1
Level 1
In response to Nithin Eluvathingal

‎10-01-2020 07:14 PM

Hi Nithin
Thank you for your reply.


I generated this on Lab and checked the packet flow to see how it works.

Always the Publisher initiate the request though if you sync on-Prem Satallite with Cisco cloud.

Once you have synced with the On-Prem to Cisco cloud, on-prem SSM will not initiate a request to CCM and on-Prem SSM wait for the CCM to initiate the request.

 

Kind regards

Pragash

0 Helpful

Go to solution
Vinod.s
Level 3
Level 3

‎09-12-2020 12:42 AM

Hello Pragash,

 

What you want to achieve?

 

You want to enable firewall port in between cucm and on prem ssm or in between On prem SSM and cloud SSM or in between cucm and cloud SSM ...

 

 

As per Document which you shared it will enable rule in between on prem ssm and cloud ssm and it should be bidirectional and first on prem ssm will initiate requst.

 

No need to create rule for cucm sub since pub will manage .

 

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents