How can I add a hosts address to an expressway server?

John Huthmaker · ‎11-19-2015

I have a unique scenario with a client. They are using an expressway-e with dual nics. They do not have a real DMZ, so the Expressway-E is just in a separate VLAN. We were unable to get video working with a single nic, so Cisco told us to use dual nics. That resolved B2B calling. However, I cannot get MRA working. The MRA zone has to point to the second nic of a dual nic Expressway. Since DNS does not point to that IP Address, it fails every time.

I can think of two ways to fix it.

1) Add the second IP Address as an alias in the SSL Certificate on the Expressway-E

2) Create a hosts file that points to the second IP Address of the Expressway-E on the Expressway-C

Does anyone know how to do the second one? Does anyone know if the first one would work?

Oleg Serstjuk · ‎11-13-2017

If you're getting public CA to sign E cert it wont accept the IP address

This works to get TLS working and the records survive a reboot of the expressway

https://cdpneighbors.com/spoof-dns-on-expressway/

login as root

For static A records, create a file called hosts.conf

/tandberg/etc/dnsmasq.conf.d/hosts.conf

address=/expe-mra.car.pnslabs.com/10.20.30.40

For static SRV records, create a file called srv.conf

/tandberg/etc/dnsmasq.conf.d/srv.conf

srv-host=_cisco-uds._tcp.car.pnslabs.com.,cucm.car.pnslabs.com.,8443,100,0

After adding the file, you’ll need to restart dnsmasq: - I couldn't get this command to work so rebooting the expressway did the trick

/etc/init.d/dnsmasq restart