I'm having some difficulty getting my call policy to function. My current setup: Production VCSc and VCSe, and a QA VCSc and VCSe. The Production and QA enviornments are not connected through a neighbor zone. All running 7.2.2
What I am specifically trying to do is to block all calls in and out not from our domain.
I am testing by making a call from the free Jabber Video client to a C40 registered on my QA enviorment. It should route as Jabber.com -> QA VCEe -> Call policy blocks as its not from .*@mydomain.net or .*@qa.mydomain.net. Instead, it is routing the call from the QA VCSe to the VCSc and to the C40.
I was able to slightly modify it to get it working.
The one slight issue I'm having is with the SIP BYE message being sent.
I can now sucessfully block calls from outside domains coming in. The issue I'm having is that if I place an outbound call, and if they end the call, the SIP bye message seems to be blocked coming back in.
Example: email@example.com calls into me, and it is block as expected. I call out to firstname.lastname@example.org and it connects the call as expected. If I end the call from my side, it sends the SIP BYE message. If I end the call from the email@example.com side, it does not succesfully route the SIP bye message.
I've been giving some thought to what you are trying to do. Using CPL to do it would get a bit complicated. You can simply reply on your search rules and zones. Plain and simply, be sure that all of you devices and clients register as authenticated. Set all of your search rules to require that the messages be authenticated. That right there will only allow internal communication only. No one from the outside will be able to dial in through your Expressway since those messages will come in as unauthenticated. If you then want to allow dialing in from a specific location, you can create neighbor zones to the locations, and you can either set the neighbor zone as Treat as Authenticated (which will blindly set all messaging from them as autheticated) or you can enable SIP authentication trust mode. This will make you VCS automatically trust any SIP message from the far site that is already considered authenticated. This will require the far site to also have proper authentication configured for their devices.
Greetings, Wanted to share a few lessons learned while migrating from a distributed to centralized IMP deployment. Our current setup included many CUCM/IMP distributed clusters with centralized Expressway server for MRA login. We did not wish to perf...
Parsec's Cisco UCCE/PCCE CC Connector application for CRM works as a bridge between the CRM and Cisco UCCE/PCCE CC solution.The CRM can be any cloud based CRM like Salesforce (SFDC), ServiceNow ,MS Dynamics or a 3rd party CRM.The CRM user/Agent will have ...
It’s a feature which allows CUCM to determine whether the phone is in its home location or a roaming station.By enabling this feature users can roam from one site to another site and acquire the site-specific settings such as Codecs, MRGL, Call rout...
Cisco just Announced their new Collaboration Toolbox resources portal. You can check it out here https://collabtoolbox.cisco.com/ It has a bunch of tools a partner can find helpful. But if your interested in learning which...