Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
383
Views
5
Helpful
2
Replies

IP phone with IPSEC tunnel

peter887
Level 1
Level 1

‎08-01-2022 08:31 AM

Hi Everyone,

We have a requirement to change Layer2 connectivity from Remote-Site to Main-site from a radio(Layer2 Trunk) to an IPSEC tunnel.

The plan was, we need to change the IP address of the remote-site as IPSEC tunnel wont work with same subnet (yes we can do NAT but we prefer just changing the IP since this is going to be future-proof).

The main concern was at the remote-site, there are IP-PHONE that has a call manager on the Main-Site under same subnet. Now that we change its IP, is there something we should be concern of?

Any thoughts?

omegle xender
Labels:
2 Replies 2

MHM Cisco World
VIP
VIP

‎08-01-2022 09:08 AM

only this point 

The mode can be either “Transport” or “Tunnel”. We selected “Transport” which only encrypts the payload of the data packets rather than the payload and the header. TAC assured us that this is still totally secure and it creates a little less overhead.

0 Helpful

Scott Leport
Level 7
Level 7

‎08-02-2022 04:41 AM

Hi, 

Is it just the phone subnet at the remote site you're looking to change?

Or is there also a CUCM node on the remote site? If so, does this currently share an IP subnet with a CUCM node and IP phones on the main site? If it's the latter, is the CUCM node on the remote site a Subscriber? 

0 Helpful
Customers Also Viewed These Support Documents