For the CONTROL ACL, the other ranges are for SIP (including Secure SIP) and for H.323. Those are used for call control as well, though not necessarily for the 7921s. It is generally better to include those, unless specifically told which call control protocols to use. Or, ask the proctor :) Those are also listed in other documents (which I can't find right off hand).
As for the RTP ACL, the one in the DSG is more exact than the one listed in the 7921 deployment guide. RTP will have source and destination ports in the 16384 to 32767 range, rather than from or to anything else. Jason Boyers - CCIE #26024 (Wireless) Technical Instructor - IPexpert, Inc. Mailto: *[email protected] * Telephone: +1.810.326.1444 Live Assistance, Please visit: www.ipexpert.com/chat <* http://www.ipexpert.com/chat*> eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Wireless, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at www.ipexpert.com/communities <*http://www.ipexpert.com/communities*> and our public website at www.ipexpert.com <*http://www.ipexpert.com/*> On Wed, Jan 19, 2011 at 5:54 PM, Kara Muessig (kmuessig) <[email protected] > wrote: > Hi all, > > > > What is the reasoning behind the extra port range on lab 2 question 2.8 > regarding layer qos markings for voice including call control? According to > the 7921 deployment guide we should see a configuration similar to below, > yet on the solution guide there are bunch of different ports and the ACLs > are laid out differently. > > > > ip access-list extended SCCP > > permit tcp any eq 2000 any > > permit tcp any any eq 2000 > > permit tcp any eq 2443 any > > permit tcp any any eq 2443 > > ! > > ip access-list extended RTP > > permit udp any range 16384 32767 any > > permit udp any any range 16384 32767 > > > > thanks, > > > > [image: > http://www.cisco.com/web/europe/images/email/signature/horizontal04.jpg] > > *Kara Muessig* > CONSULTING SYSTEMS ENGINEER.SALES > Wireless South Team > [email protected] > Phone: *512-791-2870* > > > Cisco.com <http://www.cisco.com> > > [image: Think before you print.]Think before you print. > > This email may contain confidential and privileged material for the sole > use of the intended recipient. Any review, use, distribution or disclosure > by others is strictly prohibited. If you are not the intended recipient (or > authorized to receive for the recipient), please contact the sender by reply > email and delete all copies of this message. > > For corporate legal information go to: > http://www.cisco.com/web/about/doing_business/legal/cri/index.html > > > > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
