Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
196
Views
0
Helpful
0
Comments

CMS Edge & Expressway Similarities

Meddane
VIP
VIP

on ‎03-22-2023 05:39 AM

CMS Edge & Cisco Expressway

• CB selects the TURN for the clients

• CB randomly selects max 3 TURN servers and sends the details to the client

• Client forms a TURN binding with all 3 TURN but sends media thru only one

• All TURN servers must be of same capacity for CB/CBG it is associated with

• CB doesn’t know TURN capacities, so admin must do the capacity planning well

• With no XMPP service, session stickiness is not needed anymore. So LB might not be needed

How CMS Software Works

• CMS not designed to give hardware or process level isolation based on the interface

• CMS is not designed to connect to different networks of trust levels (e.g., DMZ & Intranet)

• CMS software is not designed to handle attacks which spans between interfaces

• Once CMS software gets compromised, access to all interfaces CMS is connected to is available

Some Points to Remember

• CMS Edge is not Expressway with Inside and Outside Interfaces

• CMS Edge must connect to only 1 network (DMZ)

• Updating CMS routing table just enables routing to two networks, it doesn’t give the process level isolation expected from a DMZ device

• CMS Edge does not work the same way Expressway works in a DUAL NIC deployment

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents