03-22-2018 01:41 PM - edited 03-18-2019 01:59 PM
Hi,
I have a one way video/audio fault at a client site. They have just installed 2 x Spark Room 55 Kits running CE9.2.1 and a SX20 on TC 7.3.9 at a new site. Calls from the Spark endpoints to a C40 on TC 7.1.4 at another site have no incoming audio/video at the C40. Calls from the SX20 are fine. Calls originated from the C40 to the Spark units are also OK. To check if it was a firewall issue at the new site, we also placed calls from a Spark Room 55 at a third site to the C40 and get the same result. Incoming calls to the C40 have no audio/video, but outgoing calls to the Spark unit are fine.
Incoming and outgoing calls from the C40 to any other of their 50+ endpoints at multiple sites are fine. I have checked the RTP port range is the same on the Spark endpoints as the SX20.
All these endpoints are registered using SIP to a VCS Control cluster.
Any ideas would be appreciated.
Cheers, Paul R.
Solved! Go to Solution.
03-23-2018 10:05 AM - edited 03-23-2018 10:06 AM
Hi Justin,
In my above post, I've mentioned the Bug-ID you can relate to :CSCvd33159 (https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd33159/?rfs=iqvred)
@Paul Richardson, for workaround till you upgrade, can try below other than setting Encryption option to Best-Effort:
-> Add a Capset Filter: "AEAD_AES_128_GCM;AEAD_AES_256_GCM" into the CapsetFilter on the CE endpoint to filter out the unsupported encryption.
Hope it helps !
Regards,
Rishabh Gupta
03-22-2018 05:34 PM
Does the C40 and/or Spark Room 55 have dual registration? I'm wondering if the call is interworked one way but not the other (ignore if it's all SIP).
Try making sure that it's SIP the whole way in both directions. In addition, try upgrading the C40 to TC7.3.12. TC7.1.4 is very old and way past end-of-life, it wouldn't have been tested with the newer units.
03-22-2018 05:51 PM
Hi Nick,
The call is SIP from end to end with no interworking. Regarding upgrading the C40, I agree it needs to be upgraded, but as the room and codec are AMX controlled, our AMX provider will have to check the code at that site to ensure that it is compatible with the APIs in TC7.3.12 prior to any upgrade.
Cheers, Paul R.
03-22-2018 06:12 PM
I've gone from TC6 to TC7.3 on AMX controlled C-Series without issue before - I'd suggest upgrading and you can just roll back if you have any problems. Codecs need updates just like PCs!
03-22-2018 08:20 PM
HI Paul,
I understand that, it is only the outgoing SIP calls from Spark Room 55 units to the C40 codecs which has media issues while Firewall has already been ruled out.
I guess, you would have configured the endpoints for Encryption : ON.
So it seems , this is hitting following defect : CSCvd33159 (https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd33159/?rfs=iqvred)
FYI, there are issues between CE8.3.3 ( or higher) and TC7.3.4 or lower is because of the encryption method that is used.
CE8.3.3 offers AES-256 & AES-128 and even though they negotiate AES-128, the media isn't able to be decrypted on one side; same can be verified by log snippets as well.
You should go ahead and upgrade the C40 unit to TC 7.3.4 or above, (would recommend TC 7.3.12) to fix this. You can download it from here :
Until you upgrade, as a workaround, you can keep the Encryption setting on Best-Effort.
Please rate the response and mark as solution, if it helps.
Thanks & Ragards,
Rishabh Gupta
03-23-2018 07:18 AM
Rishabh,
How does upgrading the TC endpoint resolve the issue? I looked thru the release notes for TC7.x and I don't see anything related to AES-256; do you have a bug?
03-23-2018 10:05 AM - edited 03-23-2018 10:06 AM
Hi Justin,
In my above post, I've mentioned the Bug-ID you can relate to :CSCvd33159 (https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd33159/?rfs=iqvred)
@Paul Richardson, for workaround till you upgrade, can try below other than setting Encryption option to Best-Effort:
-> Add a Capset Filter: "AEAD_AES_128_GCM;AEAD_AES_256_GCM" into the CapsetFilter on the CE endpoint to filter out the unsupported encryption.
Hope it helps !
Regards,
Rishabh Gupta
03-23-2018 11:13 AM
03-23-2018 11:41 AM
03-23-2018 12:39 PM
03-25-2018 06:34 PM
Hi Rishabh,
It is the bug that you pointed out. You may wish to note that even with encryption as Best Efforts it still attempts the negotiation and we end up with one way media.
Setting encryption to Off does allow media in both directions. Now to convince the client to upgrade the C40s at this site. :)
Cheers, Paul R.
03-23-2018 08:11 AM
Paul, since you're understandably reluctant to upgrade the C40 until you get verification that it won't break your AMX integration, here's an idea for you - downgrade the SX20 to 7.1.4 and try it. If that has the same problem then you know for sure it's the code that's the issue.
That said - Cisco (and Tandberg before) have always made a strong effort to endure backwards compatibility with the TC code API, I'd be very surprised if upgrading your C40 caused any problems with the AMX integration.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide