Cisco Cisco Expressway Maintenance Manual
The Default Zone
The Default Zone represents any incoming calls from endpoints or other devices that are not recognized as
belonging to any of the existing configured zones.
belonging to any of the existing configured zones.
between it and the Traversal
Subzone. Note that the Default Zone cannot be deleted.
Configuring the Default Zone
By configuring the Default Zone you can control how the Expressway handles calls from unrecognized
systems and endpoints. To configure the Default Zone, go to
systems and endpoints. To configure the Default Zone, go to
Configuration > Zones > Zones
and click on
DefaultZone.
The configurable options are:
Field
Description
Usage tips
Authentication
policy
policy
The Authentication policy setting
controls how the Expressway
challenges incoming messages to
the Default Zone.
controls how the Expressway
challenges incoming messages to
the Default Zone.
more information.
Media
encryption
mode
encryption
mode
The Media encryption mode
setting controls the media
encryption capabilities for SIP calls
flowing through the Default Zone.
setting controls the media
encryption capabilities for SIP calls
flowing through the Default Zone.
information.
ICE support
Controls whether ICE messages
are supported by the devices in
this zone.
are supported by the devices in
this zone.
for more
information.
Use Default
Zone access
rules
Zone access
rules
The Use Default Zone access
rules setting controls which
external systems are allowed to
connect over SIP TLS to the
Expressway via the Default Zone.
rules setting controls which
external systems are allowed to
connect over SIP TLS to the
Expressway via the Default Zone.
If the access rules are enabled, then by default no systems
will be allowed to connect over SIP TLS via the Default
Zone; you must set up the
will be allowed to connect over SIP TLS via the Default
Zone; you must set up the
for the systems you
want to grant access. In essence, it enables TLS verify
mode on the Default Zone.
mode on the Default Zone.
Note that this setting does not affect other connections to
the Default Zone (H.323 and SIP UDP/TCP).
the Default Zone (H.323 and SIP UDP/TCP).
Using links and pipes to manage access and bandwidth
associated with the Default Zone. For example, you can:
n
delete the default links to prevent any incoming calls from unrecognized endpoints
n
apply pipes to the default links to control the bandwidth consumed by incoming calls from unrecognized
endpoints
endpoints
Cisco Expressway Administrator Guide (X8.5.1)
Page 116 of 399
Zones and neighbors
The Default Zone