Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
772
Views
0
Helpful
3
Replies

MCU/TC reg on VCSE - FW ports?

johan.alkarp
Level 1
Level 1

‎01-07-2013 03:19 AM - edited ‎03-18-2019 12:23 AM

Hi all,

Customer has previously invested in a VCSE starterpack and are now about to add a MCU 4210 and TC. So would like to check the ports used for registering to a VCSE through a firewall, found the below ports on Cisco site, but would like to confirm them, and if they are the same towards a VCSE?

Taken from :

http://www.cisco.com/en/US/docs/telepresence/infrastructure/articles/conferencing_products_conferenceme_ports_used_kb_3.shtml

MCU ports

Incoming calls

H.323 -> TCP:1720 (TCP 1720 Q931/H225 signaling) 

Q921/H225 - TCP 49152-65535 <->49152-65535

Outgoing calls

MCU TCP 49152-65535 -> VCSE TCP 1720

MCU TCP 49152-65535 -> VCSE TCP 5060

MCU TCP 49152-65535 -> VCSE TCP 5061

MCU UDP 49152-65535 <-> VCSE UDP 49152-65535

Content server:

VCSE->Content - TCP 3230-3235 - Q.931 / H225 signaling

VCSE <-> MCU UDP 3230-3259 - RTP/RTCP

Thanks for any help on this

// Johan

Labels:
0 Helpful
3 Replies 3

ahmashar
Level 4
Level 4

‎01-07-2013 06:55 AM

Hi Johan,

can you list the software version of MCU and VCSE (and any other component that is supposed to register/communicate via VCSE)?

regards,

Ahmad

0 Helpful

johan.alkarp
Level 1
Level 1
In response to ahmashar

‎01-08-2013 04:47 AM

Hi,

On the VCSE there will be end-points registrating using assent, both on inside and outside the firewall.

Sw version will be x7.2 and 4.3.

Hopefully we will be able add a VCSC instead of this solution, might put the MCU on public instead, but either way it will require opening range in the FW.

// Johan

0 Helpful

Martin Koch
VIP Alumni
VIP Alumni
In response to johan.alkarp

‎01-09-2013 02:08 AM

Could you make a small drawing on how your network looks like?

Especially regards firewalls, possible NAT, ... and as well if you use something like the dual interface option key.

Descrive everything in the way in beteen endpoints/other infrastructure ( like the mcu)  and the vcs-e sp.

Be aware that neither the content server nor the MCU support assent nor h460.18, so they shall not be behind NAT.

Regards the ports itself, the VCS is quite handy as it lists on its webinterface under maintanance > port usage > *

its in/out ports. You can find some more info about the flow here:

http://www.cisco.com/en/US/docs/telepresence/infrastructure/vcs/config_guide/Cisco_VCS_IP_Port_Usage_for_Firewall_Traversal_Deployment_Guide_X7-2.pdf

Here is a faq regards the codian:

http://www.cisco.com/en/US/docs/telepresence/infrastructure/articles/conferencing_products_conferenceme_ports_used_kb_3.shtml

With these info you can compile your firewall rules.

Please remember to rate helpful responses and identify

0 Helpful
Customers Also Viewed These Support Documents