Cisco Cisco Expressway
8
Unified Communications : Control (private) to Expressway (DMZ)
Expressway-C
source port
Expressway-E server
(listening) port
Message direction
Inbound and outbound calls
Open firewall
Private to DMZ
IP address
IP address of
Expressway-C
IP address of
Expressway-E
IP Po
rt
s
XMPP (IM and
Presence)
Presence)
TCP Ue
30000 to 35999
TCP 7400
SSH (HTTP/S
tunnels)
tunnels)
TCP Ue
30000 to 35999
TCP 2222
SIP signaling
TCP & TLS A
25000 to 29999
TCP and TLS B
7001
SIP media
UDP Y
C
36002 to 59999 *
UDP Y
E
36000 to 36001 *
TURN server
control
control
UDP
>= 1024
UDP
3478 (to 3483)
R
A = Protocols > SIP > TCP Outbound port start to end: default = 25000 to
29999
B = Zones > Traversal Client > SIP port, typically 7001 for first traversal zone,
7002 for second etc.
R = On Large VM server deployments you can configure a range of TURN
request listening ports
Ue = Expressway TCP ephemeral port range defaults to 30000 to 35999
Y
C
= Local Zone > Traversal Subzone > Traversal Media port start to end
(configured on Expressway-C): default = 36000 to 59999 *
Y
E
= Local Zone > Traversal Subzone > Traversal Media port start to end
(configured on Expressway-E): default = 36000 to 59999 *
* The first 2 ports in the range are used for multiplexed traffic only (with Large VM
deployments the first 12 ports in the range – 36000 to 36011 – are used).
deployments the first 12 ports in the range – 36000 to 36011 – are used).
Unified CM-UDS
Expressway-C
Expressway-E
Internet
DMZ
IM&P