Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
873
Views
5
Helpful
3
Replies

H323 Authentication Failed on Port 6001

VCsupport17
Level 3
Level 3

‎03-12-2016 10:56 PM - edited ‎03-18-2019 05:41 AM

Hi,

I am facing an issue regarding traversal zone connectivity between Expressway Core and Edge. The Expressway Edge is deployed on DMZ and only using single interface.

SIP connection is established but H323 failed. It saying that Authentication Failed for H323. I confirmed that local database authentication on expressway edge is correct for the expressway core username and password. Also firewall ports is verified that UDP port 6001 is open between Core and Edge.

Appreciate for your help.

Thanks.

Labels:
0 Helpful
3 Replies 3

Patrick Sparkman
VIP Alumni
VIP Alumni

‎03-14-2016 11:27 AM

The username/password on the page will be used for both H323 and SIP.  Have you confirmed on the Expressway-E that H323 is configured correct with port 6001?

0 Helpful

VCsupport17
Level 3
Level 3
In response to Patrick Sparkman

‎03-16-2016 01:06 AM

Thanks Patrick for your response.

Yes, on both Expressways they are using port 6001 for H323 connection. I tried to change the H323 connection protocol on both Expressways from Assent to H460.18. Now my error is different. On Expway-c is says no response from the system. Is there any difference if i used this kind of protocol instead of Assent?

The Expressway Edge is only deployed with single interface. I am reading the Cisco VCS Control with Expressway deployment guide:

 http://www.cisco.com/c/dam/en/us/td/docs/telepresence/infrastructure/vcs/config_guide/X8-7/Cisco-VCS-Basic-Configuration-Control-with-Expressway-Deployment-Guide-X8-7.pdf

Just want to verify, Under page 60 on the document for Firewall/NAT configurations for Expressway Edge with single NIC, the peer address configured on Expressway Core as traversal client should be NAT IP of the Expressway Edge?

Thank you for your help.

0 Helpful

Patrick Sparkman
VIP Alumni
VIP Alumni
In response to VCsupport17

‎03-16-2016 10:05 AM

If you've deployed your Expressway-E with a single LAN address and using NAT, you should be using the example on pg 59, not 60.  According to the guide, it says that you must setup the Expressway-C traversal zone to point to the -E external address, and the firewall must support NAT reflection.

Is your Expressway-E configured to use NAT, and your firewall setup correct?

Is your Expressway-C configured to connect to the NAT address of the -E?

Customers Also Viewed These Support Documents