Cisco Systems ASA 5555-X Network Router User Manual

Open as PDF

of 712

20-10

Cisco ASA Series Firewall CLI Configuration Guide

Chapter 20 Configuring Cisco Intercompany Media Engine Proxy

Configuring Cisco Intercompany Media Engine Proxy

Assume for example, the ASA is configured to have a maximum of 100 TLS proxy sessions and IME

calls between SCCP IP phones establish 101 TLS proxy sessions. In this example, the next IME call

is initiated successfully by the originating SCCP IP phone but fails after the call is accepted by the

terminating SCCP IP phone. The terminating IP phone rings and on answering the call, the call

hangs due to an incomplete TLS handshake. The call does not fall back to the PSTN.

Configuring Cisco Intercompany Media Engine Proxy

This section contains the following topics:

• Task Flow for Configuring Cisco Intercompany Media Engine, page 20-10

• Configuring NAT for Cisco Intercompany Media Engine Proxy, page 20-11

• Configuring PAT for the Cisco UCM Server, page 20-13

• Creating ACLs for Cisco Intercompany Media Engine Proxy, page 20-15

• Creating the Media Termination Instance, page 20-16

• Creating the Cisco Intercompany Media Engine Proxy, page 20-17

• Creating Trustpoints and Generating Certificates, page 20-20

• Creating the TLS Proxy, page 20-23

• Enabling SIP Inspection for the Cisco Intercompany Media Engine Proxy, page 20-24

• (Optional) Configuring TLS within the Local Enterprise, page 20-26

• (Optional) Configuring Off Path Signaling, page 20-29

Task Flow for Configuring Cisco Intercompany Media Engine

Figure 20-5 provides an example for a basic deployment of the Cisco Intercompany Media Engine. The

following tasks include command line examples based on Figure 20-5.

Figure 20-5 Example for Basic (in-line) Deployment Tasks

Internet

Remote Enterprise

Local

Cisco UCMs

Local ASA

Corporate

Network

Remote

Cisco UCM

Remote ASA

Local Enterprise

192.168.10.30

192.168.10.31

192.168.10.12

ASA inside

interface

192.168.10.1

Inside media

termination

192.168.10.3

Outside media termination

209.165.200.226

Outside Cisco UMC

209.165.200.228

TLS

TCP

248764

Local

UC-IME

Server

Remote

UC-IME

Server

UC-IME

Bootstrap

Server

ASA outside interface

209.165.200.225

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems ASA 5555-X Network Router User Manual