01-29-2012 08:12 PM - edited 03-16-2019 09:17 AM
Hi, I am a newbie to CUCM.
My case:
I have CUCM cluster in one site, another CUCM cluster at remote office. Two offices are connected via WAN routers, different subnet.
I want to set intercluster trunk non-gatekeeper between these 2 CUCMs.
Any advise for the firewall rules to be setup? My IP Phones are in different subnet from CUCM servers. Do I have to include the IP Phones subnet in the firewall rules?
In general, my rules so far are like this:
From my office
permit: TCP 1720; TCP/UDP 5060, 5061; UDP 16384 – 32767
source: CUCM2 subnet
destination: CUCM1 subnet
From remote office
permit: TCP 1720; TCP/UDP 5060, 5061; UDP 16384 – 32767
source: CUCM1 subnet
destination: CUCM2 subnet
Thank you in advance.
01-29-2012 09:30 PM
Check out the list of Ports to be opened in CUCM deployment across Firewalls.
http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/port/8_0_1/portlist801.html
Pls rate helpful posts.
GP.
01-29-2012 11:59 PM
My IP Phones are in different subnet from CUCM servers. Do I have to include the IP Phones subnet in the firewall rules?
If you have "Media Termination Point Required" ticked on the trunk, then no.
GTG
01-30-2012 09:13 AM
Hi Gajanan, thanks for the reference. I composed my rule based on that actually, but I am still not certain whether I already defined all the required ports. Could someone confirm on that?
Hi Gordon, good point. I just know about that option. So if I did not enable the option, there will be RTP traffics between 2 IP phones from both sites. CMIIW..
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: