Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Question !

Status
Not open for further replies.
bladeka

bladeka

IS-IT--Management
Sep 23, 2004
51
EG
I have to 2 braches connected throught the internet i need help if i can decrypt the data passing from a phone on one branch going to the call manager in the other branch !? is there anyway to create a VPN or something between cisco IP Phone & the call manager can the data passing through them become encrypted ?

Thanks in advance !
 
Sort by date Sort by votes
Use a PIX firewall at both locations and setup an IPSec tunnel to encrypt the traffic. You should be doing this anyway to protect your PCs and your CCM server.


It is what it is!!
__________________________________
A+, Net+, I-Net+, Certified Web Master, MCP, MCSA, MCSE, CCNA, CCDA, and few others (I got bored one day)
 
Upvote 0 Downvote
I dont want to use a firewall at the remote site where the Phone is present the PIX is only on the CCM side ..
 
Upvote 0 Downvote
You want to pass the Skinny signal from the an Internet routable IP address to the a CCM server behind a PIX? Not going to happen.

The phone will download the config file from the TFTP server and it will have the inside IP address of the CCM server. The PIX cannot open the file and translate that by editing the file.

Once again, use a PIX or a Linksys router that support VPN.


It is what it is!!
__________________________________
A+, Net+, I-Net+, Certified Web Master, MCP, MCSA, MCSE, CCNA, CCDA, and few others (I got bored one day)
 
Upvote 0 Downvote
You could put the CCM as a public IP :p It'd be dumb...

But it'd work
 
Upvote 0 Downvote
VERY DUMB!!!


It is what it is!!
__________________________________
A+, Net+, I-Net+, Certified Web Master, MCP, MCSA, MCSE, CCNA, CCDA, and few others (I got bored one day)
 
Upvote 0 Downvote
what type of router do you have at the remote site? You could use the router and not the pix to support the VPN.

Also the new softphone is as the 7970 phone running on a PC.. IT works amazing and will solve your VPN problems.

 
Upvote 0 Downvote
Hi,


"I have to 2 branches connected throught the internet"

How did you actually connected them? If this connection is already encrypted; you should no longer worry about encrypting the phone stream towards the ccm.

example if it is not:
- 8xx series remote end
- enable a 3DES vpn towards HQ (could be pix; or better a vpn concentrator on a dmz)
- hook up your and that's about it.
- make sure your ip phone on the remote end has sufficient bandwdth available through your inter-site connection.

Cheers,
Peter.




 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

dogg1
  • Locked
  • Question
Newbie question
Replies
1
Views
76
jgbmt
jgbmt
ReallyRotten
  • Locked
  • Question
CIMC question 1
Replies
5
Views
196
ADB100
ADB100
HASAGO
  • Locked
  • Question
Cisco 8841 Call Toast Question
Replies
1
Views
122
gnrslash4life
gnrslash4life
ReallyRotten
  • Locked
  • Question
CUCM dial plan question
Replies
1
Views
66
gnrslash4life
gnrslash4life
ReallyRotten
  • Locked
  • Question
Call Handler question
Replies
1
Views
65
gnrslash4life
gnrslash4life

Part and Inventory Search

Sponsor

Back
Top