Packet Voice Data Module; Voice Security; Uc Trusted Firewall - Cisco 1941W Configuration Manual
Cisco 3900 series, cisco 2900 series,
cisco 1900 series
Hide thumbs
Also See for 1941W:
- Hardware installation manual (102 pages) ,
- Installing and upgrading (24 pages)
Table of Contents
Advertisement
Voice Security
Packet Voice Data Module
The Next-Generation Packet Voice Data Module (PVDM3) digital signal processor (DSP) modules
provide up to four times the density (per slot) of existing audio applications on Cisco voice gateway
routers. One universal DSP image for these DSP modules provides resources for time-division
multiplexing-to-Internet Protocol (TDM-to-IP) gateway functionality for digital and analog interfaces,
audio transcoding, and audio conferencing.
This enhanced DSP architecture accommodates a new packet-processing engine for rich-media voice
applications and supports the TDM voice framework used by the PVDM2 module. The PDVM3 has a
Gigabit Ethernet interface with a Multi-Gigabit Fabric to increase IP throughput, and a DSP
hardware-based health monitor provides DSP failure detection that is ten times faster than existing
technology.
To configure PVDM3 features, see the
section on page
Voice Security
The Cisco 3900 series and Cisco 2900 series ISRs support the following voice security services:
•
•
•
UC Trusted Firewall
Cisco Unified Communications Trusted Firewall Control pushes intelligent services onto the network
through a Trusted Relay Point (TRP). Firewall traversal is accomplished using Simple Session Traversal
Utilities for NAT (STUN) on a TRP co-located with a Cisco Unified Communications Manager Express
(Cisco Unified CME), Cisco Unified Border Element (CUBE), Media Termination Point (MTP),
Transcoder, or Conference Bridge.
Firewall traversal for Unified Communications is often a difficult problem. Voice over IP (VoIP)
protocols use many ports for a single communication session and most of these ports (those used for
media, H.245 and so forth) are ephemeral. It is not possible to configure static rules for such ports, as
they fall in a large range. Cisco Unified Trusted Firewall opens ports dynamically based on the
conversation of trusted end-points.
By using UC Trusted Firewall in the network, following things can be achieved:
•
•
•
•
To configure UC Trusted Firewall features, see
at:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/feature/guide/TrustedFirewallControll.html.
Cisco 3900 Series, Cisco 2900 Series, and Cisco 1900 Series Integrated Services Routers Generation 2 Software Configuration Guide
178
185.
UC Trusted Firewall, page 178
Signaling and Media Authentication and Encryption, page 179
Virtual Route Forward, page 179
Firewall can be made independent of protocol, because only TRP, which is controlled by Call
Control needs to be enhanced for various protocols. Firewall does not need to change.
Increase firewall performance while opening firewall ports in the media path dynamically when a
VoIP call is made between two endpoints.
Simplify the firewall policy configuration and integration of firewall policy generation with call
control.
Provide a solution without compromising on network security.
Chapter
Unified Communications on Cisco Integrated Services Routers
"Configuring Next-Generation High-Density PVDM3 Modules"
Cisco Unified Communications Trusted Firewall Control
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
