Hello all
We found the problem in the ASA config. We had SIP Inspectors enabled and
that blocked the traffic back from the ASA to the PG. NO we have two
choices no SIP inspection or define a static route from the ASA pointing to
the PG.
Our network team is now discussing what to choose.
Thanks
Hello Group
we plan the upgrade of our CUCM 8.0 to 9.1.2 this spring.
Now I want to test the new IP Phone firmware on a few phones. I found a
cisco document (Upgrade IP Phone Firmware Individually Doc ID: 108090) that
describes the steps.
However I have a cluster with 8 CUCM servers.
Do I have to
Hello!
I was wondering if anyone else has seen situation where applying 'auto qos
voip cisco-phone' to an interface would not apply the full macro - for
example to global config no revised dscp-cos map or any queue-sets gets
applied. I've run into a few 3750 stacks where this has happened - one
Remember if you install the COP file on your publisher, you will need to set
the default load back to what it currently is, otherwise all phones will try to
pull the new code upon reboot.
Dennis Heim | Solution Architect (Collaboration)
World Wide Technology, Inc. | 314-212-1814
PS
I removed an audio-only (non-hardware) trusted relay point. It seems that
the phones set to use a trusted relay point continue to use this MTP as a
relay point.
Resets do not seem to help at all. Is there something I'm missing? Do I
need to turn off TRP and turn it back on on the phones?
Could be replication problems. I'd check the CCM traces when the TRP is
allocated and see if it is indeed thinking it's still a valid TRP. If the
database is good on all nodes, might require a CallManager service restart.
On Tue, Apr 8, 2014 at 12:04 PM, Erick Wellnitz
That only shows the correct one. The strange part is that only two of the
phones have behaved in this way. The others updated and worked as expected.
The users are unerstanding. We'll swap the phone and troubleshoot the
problematic one as time permits.
On Tue, Apr 8, 2014 at 11:18 AM, Brian
I second Mehtab's comment about GNS3, great tool for learning routing as
long as you can acquire an IOS image for one of the compatible routers.
Check out http://gns3vault.com/ for some nice labs designed for
gns3/dynamips. Keep in mind it won't help you out as much with catalyst
switch features.
That will probably be hard to come by. TAC doesn’t support LUA scripts in UCM,
they will defer you to the Cisco Developer Network for assistance. The link
below is the developer guide for SIP transparency and normalization. It does
not have any detail on load or process time.
Does anyone know if/when Cisco will be coming out with a security advisory
about Open SSL and heartbleed?
http://threatpost.com/seriousness-of-openssl-heartbleed-bug-sets-in/105309
---
Lelio Fulgenzi, B.A.
Senior Analyst, Network Infrastructure
Computing and Communications Services
I don't think that's the correct advisory. That's a DoS vulnerability from
2004.
Brian
On Tue, Apr 8, 2014 at 5:11 PM, Lelio Fulgenzi le...@uoguelph.ca wrote:
nevermind... my first search did not produce results...
weird. for some reason i fixated on the date beneath the entry in the search
listing which had 2011, which made more sense.
do you know if there is a more recent advisory?
---
Lelio Fulgenzi, B.A.
Senior Analyst, Network Infrastructure
Computing and Communications Services (CCS)
I haven't seen one. Currently trying to run the example python script
against one of my clusters but having some trouble.
On Tue, Apr 8, 2014 at 5:24 PM, Lelio Fulgenzi le...@uoguelph.ca wrote:
weird. for some reason i fixated on the date beneath the entry in the
search listing which had
Here's what I found testing against 9.1.2.1.28 with a slightly modified
python script:
bmeade@ubuntu:~$ python vulnscript 10.3.11.250
Connecting...
Sending Client Hello...
Waiting for Server Hello...
... received message: type = 22, ver = 0301, length = 1012
Sending heartbeat request...
Here we can see CUCM does not respond to the Heartbeat Request with any
data:
[image: Inline image 2]
For the root inclined, we can find what openssl version is running:
[root@CUCM912 ~]# openssl version
OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
This new heartbeat bug isn't valid as OpenSSL didn't
Thanks Brian.
Can we assume that ELM and UCCx is also not affected? Same 9.x train.
Sent from my iPhone
On 2014-04-08, at 7:21 PM, Brian Meade bmead...@vt.edu wrote:
Here we can see CUCM does not respond to the Heartbeat Request with any data:
image.png
For the root inclined, we can
Should all be the same underlying OS. 10.x would be the only one I'd worry
about until someone can check if it is vulnerable since it may have a newer
openssl version.
On Apr 8, 2014 7:34 PM, Lelio Fulgenzi le...@uoguelph.ca wrote:
Thanks Brian.
Can we assume that ELM and UCCx is also not
17 matches
Mail list logo