05-14-2013 09:07 PM - edited 03-16-2019 05:19 PM
In respect of Audit cocnern, a customer demands to place CUCM 8.x behind Firewall currently it is positioned without any involment of firewall. Please answer below mentioned quries , make note there are around 2000 active users..
would be any issue if we place Cisco Unified Call Manager (PUB) behind Firewall...
Won't be any performance impact on either side Cisco Firewall or CUCM..as all traffic will pass via Firewall..
Any practicle example you noticed or observed any where...
Is this the right approach in security point of view or we don't need to involve hardware firewall in Voip...
What is recomended by Cisco in this case....
As per my understaing, in voice communication CUCM only be involve to establish the Voip Call once call established the communication will be directly between cisco extensions.. similarly firewall will also be involve while establishing call otherwise it will remain ideal...
05-14-2013 09:21 PM
Hi Fahad,
You can ask customer to use Audit Log feature available in CUCM.
If customer needs to place behind firewall, then, TCP and UDP ports need to be opened.
regds,
aman
05-14-2013 09:28 PM
obvious for tcp and udp,, but my question still stand that will be any performance issue or is it practicle approach..!
05-14-2013 09:46 PM
Hi Fahad,
We did installation where we placed single server behind the Firewall ,did NATTING and took much more time to stabilize.
regds,
aman
05-14-2013 09:55 PM
Hi Fahad,
It should work just fine as long as the following porst are allowed :
http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/port/8_5_1/portlist851.html
And yes, once the call is connected the RTP flows from endpoint to endpoint until the time you use a CUCM based media resource in which case, the RTP will flow from/through the server.
Regards,
Jagpreet
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide