cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
423
Views
0
Helpful
3
Replies
Highlighted
Beginner

Cisco Expressway MRA Jabber Cannot communicate with the server

Hi,

 

I have been trying to deploy Expressway 12.6 MRA to allow jabber to use without VPN on lab but i've been getting some issues on the testing.

 

Was wondering if anyone could provide some inputs and suggestion if i've missed anything ?

 

I've configured all the DNS on both local and public and tested , works fine.

 

For Expressway-E i've been seeing various docs which mentions to configure the public domain for E but some mentions use local domain.

 

Local Domain - abc.local

A Record and SRV

  • cucm.abc.local
  • Expressway-E.abc.local
  • Expressway-C.abc.local
  • SRV - _cisco-uds._tcp.abc.local

 

Public Domain - abc.com

A Record & SRV

exp-e.abc.com

[Public IP]

_sips._tcp.abc.com

10 10 5061 exp-e.abc.com

_collab-edge._tls.abc.com

10 10 8443 exp-e.abc.com

 

Expressway-E

Domain

  • abc.com 

Expressway-C

  • abc.local

 

The issue is if i use public domain (abc.com) on E:

  • the traversal zone on C show active and reachable but the zone on E shows as state failed.
  • Also when testing via the cisco collab edge validator tool, it shows t"Failed to retrieve the edge config from Expressway-E."

 

The issue is if i use local domain (abc.local) on E:

  • the traversal zones on both C and E shows active
  • Also when testing via the cisco collab edge validator tool it can connect to edge server configuration but mentions "The domain of the FQDN returned by the collab-edge SRV record is not the same as the domain set on VCS/Expressway-E." which i believe it means to use public domain.

The Exp C is configured with local domain (abc.local)

 

I've update the jabber-config-user.xml file with update VoiceServicesDomain to public domain (abc.com) and when testing its and getting "cannot communicate with the server" and the diagnostics shows 

Domain Controller - The Specified domain either does not exist or could not be contacted."

 

Many Thanks

3 REPLIES 3
Highlighted
Enthusiast

hi

1. Do you have public signed certificate for expressway-e?

2. are you using 2 nic deployment or single nic deployment in Expressway-E?

3. do you have abc.com DNS zone inside your dns server? 

if you can answer above queries i can help you.

Highlighted
VIP Advocate

Local Domain - abc.local

A Record and SRV

  • cucm.abc.local
  • Expressway-E.abc.local>>>>  u need to use abc.com. not local remove the  entry and  i don't  think there is a need to use voice domain. 

The Expressway E configuration should be dual nic. create A subzone in internal DNS for abc.com and create A record in this zone for expresswayE.abc.com pointing to expressway internal nic IP address. upload  expressway E public signed certificate on E with Root CA. upload the Public  root CA on Expressway C. Upload the internal Root CA(which signed Expressway C) on  expressway E. 

 

note:- when generating CSR from Expressway E make sure that u select/enter  the DNS/Collab edge option and mentioned ur public domain. 

 

Expressway E san should have the public domain name. 

=>>>If this answered your question, please click "ACCEPT AS SOLUTION"<<<=
=>>>If you find this response useful, please mark it as "HELPFUL"<<<=
Highlighted

ON expressway E, External Domain name should be mentioned in the unified CM registration domain as DNS or COllab Edge when generating the CSR. so you need to purchase SAN or multi domain certificate from public CA.

InkedCapture_LI.jpg

=>>>If this answered your question, please click "ACCEPT AS SOLUTION"<<<=
=>>>If you find this response useful, please mark it as "HELPFUL"<<<=
Content for Community-Ad