Cisco Cisco Expressway Maintenance Manual
Parameter name
Values
TRAVERSAL_TYPE
TYPE_[UNDEF / ASSENTSERVER / ASSENTCLIENT /
H460SERVER / H460CLIENT / TURNSERVER / TURNCLIENT /
ICE]
H460SERVER / H460CLIENT / TURNSERVER / TURNCLIENT /
ICE]
UNAUTHENTICATED_SOURCE_ALIAS
UTCTIME
ZONE_NAME
Cryptography support
External policy servers should support TLS and AES-256/AES-128/3DES-168.
SHA-1 is required for MAC and Diffie-Hellman / Elliptic Curve Diffie-Hellman key exchange; the Expressway does not
support MD5.
support MD5.
Default CPL for Policy Services
When configuring a policy service, you can specify the Default CPL that is used by the Expressway if the service is
not available.
not available.
The Default CPL for Call Policy defaults to:
<reject status='403' reason='Service Unavailable'/>
and this will reject the request.
The Default CPL for policy services used by search rules defaults to:
<reject status='504' reason='Policy Service Unavailable'/>
and this will stop the search via that particular search rule.
This default CPL mean that in the event of a loss of connectivity to the policy server, all call requests will be rejected.
If this is not your required behavior then you are recommended to specify alternative default CPL.
If this is not your required behavior then you are recommended to specify alternative default CPL.
We recommend that you use unique reason values for each type of service, so that if calls are rejected it is clear why
and which service is rejecting the request.
and which service is rejecting the request.
367
Cisco Expressway Administrator Guide
Reference Material