Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
434
Views
0
Helpful
2
Replies

CUCMBE5000 Behind a firewall

feisalb
Level 1
Level 1

‎08-23-2011 01:28 AM - edited ‎03-16-2019 06:37 AM

Hello All

I have attached a topology of what the customer has requested.

Security is high on the agenda and I wanted to know if this is a valid  design?

What ports will the firewall need to open up for all traffic to talk to each  other?

I have started a list of communications that will take please can someone add  and/or correct.

Tftp port for phones to download configuration from cucmbe (tftp server)

sccp between phones and cucmbe

H323 between GW and cucmbe

Comms between cucmbe and attendant console

Traffic between Attendant Console server and clients

Traffic between subscribers and unity connection.

Traffic between Fax machines/ analog phones and VG224

.

.

I am going to use extension mobility as well.

I have a the url for the ports used on cucm but wanted a definitive  answer.

http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/port/8_5_1/portlist851.html

Thanks in advance for your help and assistance.

Feisal

Labels:
112416-Urenco voice topology v3.vsd.zip
0 Helpful
2 Replies 2

Joseph Martini
Cisco Employee
Cisco Employee

‎08-23-2011 04:07 AM

You'll want to open all the ports on the port usage guide you already found and things should work properly.  Be aware that if you use any NAT you would have to make sure all NAT devices are SCCP aware meaning they will do SCCP inspection.

0 Helpful

feisalb
Level 1
Level 1
In response to Joseph Martini

‎08-25-2011 01:55 AM

What ports need to opened for communication between SRST Gateway and ip phones?

Is it just port 2000 or do I need rtp ports as well?

Thanks

Feisal

0 Helpful
Customers Also Viewed These Support Documents