H.323 Gup Configuration - Cisco 7604 Configuration Manual
Catalyst 6500 series switch and cisco 7600 series router firewall services module configuration guide using the cli
Hide thumbs
Also See for 7604:
- Configuration manual (1011 pages) ,
- Installation manual (324 pages) ,
- User manual (98 pages)
Table of Contents
Advertisement
Chapter 22
Applying Application Layer Protocol Inspection
H.323 Inspection
H.323 GUP Configuration
Figure 22-9
illustrates an H.323 inspection topology configured with H.323 GUP support.
Figure 22-9
H.323 Inspection Configuration with H.323 GUP Support
Inside
H.323 zone
Outside
Firewall Service Module
(FWSM)
In Gatekeeper
Gatekeeper
RAS message on UDP 1719
GUP session
vlan50
vlan100
Gateway
Gateway
Analog phone
Analog phone
The following configuration applies to
Figure
22-9.
firewall transparent
hostname FWSM
!
interface Vlan50
nameif inside
bridge-group 1
security-level 100
!
interface Vlan100
nameif outside
bridge-group 1
security-level 0
!
interface BVI1
ip address 10.0.0.8 255.255.255.0
!
access-list h323-gup-permit extended permit udp any any eq 1719
access-group h323-gup-permit in interface inside
access-group h323-gup-permit in interface outside
Note
RAS inspection should be turned on for interfaces through which the gatekeeper running GUP protocol
is reachable. In this example, RAS inspection is turned on for both inside and outside interfaces.
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide using ASDM
22-56
OL-20748-01
- Quick Links:
- C H a P T E...
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
