Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3443
Views
15
Helpful
5
Replies

Jabber | Multiple CUCM- CUPS cluster using same domain

Nirmal Issac
Level 1
Level 1

‎12-17-2013 05:36 AM - edited ‎03-17-2019 03:48 PM

All,

Imagine a scenario, where company xyz is having 3 seperate local CUCM clusters for each of their 3 sites,  and each have its own unique CUPS cluster. But they have a single AD domain xyz.com.

Presence users in all 3 clusters use the same xyz.com domain. Now they want their users to be able to log in from public internet, using Jabber Windows, and want to guide the signalling to the right CUCM-IMP cluster using DNS/SRV. Please suggest a plan for this. Im unsure if they are using 8.x or 9.x cluster, but I assume it would be 9.x. Also J4W would be 9.2.6. Please provide your ideas to design this.

Thanks in advance.

1 person had this problem
Labels:
0 Helpful
5 Replies 5

Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎12-17-2013 07:13 PM

There are two pieces to this: inter-cluster peering and collaboration edge.

Inter-Cluster Peering is used to mesh the three clusters into one logical solution. Lucky for you, the major prerequisite of all clusters being in the same presence domain has already done.

Then there is how to get Jabber to work from outside the firewall. Exposing the IM&P cluster to the Internet is not recommended for a few reasons: 1) the BU didn't intend the cluster to be hardened for direct exposure to the Internet; and, 2) it doesn't support NAT between the client and the server; and, 3) there are a lot of ports used by the client, requiring a lot of exposure on the firewall. In other words, the cluster must be on the inside trusted network. You have two options:

  1. Use AnyConnect VPN on the client.
  2. Use the new Collaboration Edge solution.

Please remember to rate helpful responses and identify helpful or correct answers.

Dennis Mink
VIP Alumni
VIP Alumni

‎12-17-2013 07:13 PM

I guess the requirement that significantly complicates things is, the use of DNS/SRV records.

without it, the jabber clients can log into any of 3 presence clusters manually (or packaging the jabber client software), and from there would get the CUCM it was to use. 

To be honest, I am not aware of a way to use SRV records and still have clients automatically log onto potentially 3 different CUPS clusters, with any other form of disctinction.

Log in from the internet; use Collaboration edge; Cisco's-cure-all with no release date


=============================
Please remember to rate useful posts, by clicking on the stars below. 

=============================

Please remember to rate useful posts, by clicking on the stars below.

Jonathan Schulenberg
Hall of Fame
Hall of Fame
In response to Dennis Mink

‎12-17-2013 07:25 PM 

I guess the requirement that significantly complicates things is, the use of DNS/SRV records.

This isn't a problem. The SRV record is just an auto-discovery record. The client is redirected to it's home cluster and assigned node after doing the lookup. This assignment is stored in the local cache so you don't have to rely on this every time every a user starts the application either.

I typically recommend customers use a priority and/or weighting similar to how they setup MX records. Perhaps the biggest cluster with geographic redundancy is priority 10 with each of the other clusters being at priority 20 just in case the WAN is segmented. If you have a good DNS server (read: not Microsoft) or global load balancer it might even be able to shape the SRV query results based on the specific DNS server queried or source IP address of the query.

Here's an example:

_cuplogin._tcp.example.com. 86400 IN SRV 10 50 8443 clusterA-pub.example.com.

_cuplogin._tcp.example.com. 86400 IN SRV 10 50 8443 clusterA-sub.example.com.

_cuplogin._tcp.example.com. 86400 IN SRV 20 25 8443 clusterB-pub.example.com.

_cuplogin._tcp.example.com. 86400 IN SRV 20 25 8443 clusterB-sub.example.com.

_cuplogin._tcp.example.com. 86400 IN SRV 20 25 8443 clusterC-pub.example.com.

_cuplogin._tcp.example.com. 86400 IN SRV 20 25 8443 clusterC-sub.example.com.

http://en.wikipedia.org/wiki/SRV_record

Please remember to rate helpful responses and identify helpful or correct answers.

Nirmal Issac
Level 1
Level 1
In response to Jonathan Schulenberg

‎12-19-2013 08:05 PM

Jonathan/Dennis,

Thank you so much for the inputs.  I will go through them, and provide you a summary on this issue once i fix it

0 Helpful

hxmengmetro
Level 1
Level 1

‎04-06-2014 11:30 AM

Hi nissac, Have you finalized yiur solution yet? We have exact situation as you described here. What I'm trying to do is using different domain pointing to different expressway edge, this will ensure the external user going to the appropriate cucm cluster. Only thing I need change is the enterprise parameter for cluster fqdn. This should reflect the respective domain with corresponding expressway edge. SME will be needed also for ILS purpose to exchange the URI. Let me know about your plan. Thank you.
0 Helpful
Customers Also Viewed These Support Documents