Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2622
Views
5
Helpful
1
Replies

Cisco Expressway-E search rules and call policy best practices

marco_81
Level 1
Level 1

‎12-17-2018 01:51 AM - edited ‎03-18-2019 02:31 PM

Hi all,

i open this discussion to ask some questions about protecting Exp-E from undesired inbound calls.

I have Cisco Exp-E configured with search rules to route incoming calls from Internet to reach the internal dial-plan only, search rules are configured to route calls only toward trusted destination, that is on-net dial plan.

No Call Policy are in place.

With search rules and no call policies in place, an external malicious attempt to reach some international number (for example) is correctly not routed internally, with 404 Not Found sent to the external malicious caller.

Deploying Call Policy to block this kind of attempts would send 403 Forbidden to the malicious caller instead, and no search rule would be computed.

My question is: Is it a best practice to deploy Call Policy for this kind of scenario, even if the search rule alone would not route malicious calls?

 

thanks for help!

Labels:
0 Helpful
1 Reply 1

Anurag Srivastava
Cisco Employee
Cisco Employee

‎12-17-2018 03:46 AM

Hello,

 

I think making call policy will be better because if you are doing it through search rule for every call your Exp-E need to process and check for a matching rule which is an unnecessary task for it and suppose if these calls comes in high number then?

 

Also you can refer the below link for more discussions-

 

https://community.cisco.com/t5/telepresence-and-video/sip-spam-call-attack-and-mcu-and-vcs-e/td-p/2868418

 

Thanks

 

Please rate if it is helpful..

 

Customers Also Viewed These Support Documents