Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
427
Views
0
Helpful
0
Replies

secure SIP trunk between mixed mode CUCM cluster and CUBE

Ibrahim Jamil Jamus
Level 1
Level 1

‎07-27-2016 11:34 PM - edited ‎03-17-2019 07:40 AM

Hi all,

I have two CUBE (2951, IOS 15.6.2) with HSRP, and I am trying to configure secure SIP with CUCM cluster that is operating as mixed mode cluster.

I am following the below cisco document to have secure SIP trunk between the both ends to encrypt the signaling as well as SRTP traffic between both.

http://www.cisco.com/c/en/us/support/docs/unified-communications/unified-border-element/200104-SIP-TLS-and-SRTP-RTP-internetworking-on.html#anc7

mainly I am facing two issues:

1- when I am trying to configure the following secure commands, the CUBE router is not accepting them:

- srtp fallback (under dial-peer or voice service voip configuration)

- crypto signaling default trustpoint CUBE-TLS (under sip-ua).

- session transport tcp tls (under voice service voip).

- dspfarm profile 1 transcode universal security

2-its mentioned under the PKI trustpoint configuration:

crypto pki trustpoint CUBE-TLS
 enrollment url http://X.X.X.X:80
 serial-number none
 fqdn none
 ip-address none
 subject-name CN=Secure-CUBE             
 revocation-check none
 rsakeypair CUBE

in case of two CUBE and configured in HSRP for redundancy, what is the IP should be configured in the URL? the HSRP virtual IP or the physical IP?

and please feel free to add any recommendations to follow apart from the document I am following.

thanks in advance.

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents