Quick question for those with experience here: We are in the process of deploying CUCM 6.x in our corporate office with about 150 local phones (mix of older phones and newer phones, all are using SCCP today, not SIP).
We have about 20 remote offices which are all small and very mobile (they physically move locations frequently). Because of this, we have a mix of cable, DSL, and T1's to remote sites. All remote sites connect to corporate over IPSEC VPN's (PIX 501 or ASA in remote office, ASA 55xx in corporate). Our corporate office has plenty of stable bandwidth available via a DS3.
I'm looking for some guidance on connecting phones in my remote offices (1-6 phones max in most offices) to my call manager. {I understand the implications with 911, lack of QoS, and lack of survivability with this setup}
Given that there are existing VPN connections, should we look at putting the phone traffic "in" the tunnel, or look at options for an external proxy to let the traffic go outside the tunnel to a proxy? I don't fully understand the proxy...it's my understanding that the issue is in NAT and that we can't just simply "publish" the callmanager the way we would something like a web server. The communications to remote offices really doesn't need to be encrypted, I'm just looking for the best performing, most stable solution given what we have.
Anyone using several remote sites over ipsec VPN's? I'm really just curious what others are doing and what your recomendations would be here.
Thanks in advance!
We have about 20 remote offices which are all small and very mobile (they physically move locations frequently). Because of this, we have a mix of cable, DSL, and T1's to remote sites. All remote sites connect to corporate over IPSEC VPN's (PIX 501 or ASA in remote office, ASA 55xx in corporate). Our corporate office has plenty of stable bandwidth available via a DS3.
I'm looking for some guidance on connecting phones in my remote offices (1-6 phones max in most offices) to my call manager. {I understand the implications with 911, lack of QoS, and lack of survivability with this setup}
Given that there are existing VPN connections, should we look at putting the phone traffic "in" the tunnel, or look at options for an external proxy to let the traffic go outside the tunnel to a proxy? I don't fully understand the proxy...it's my understanding that the issue is in NAT and that we can't just simply "publish" the callmanager the way we would something like a web server. The communications to remote offices really doesn't need to be encrypted, I'm just looking for the best performing, most stable solution given what we have.
Anyone using several remote sites over ipsec VPN's? I'm really just curious what others are doing and what your recomendations would be here.
Thanks in advance!