Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Firewall traversal configuration overview
This section provides an overview to how the VCS can act as a traversal server or as a traversal client.
VCS as a firewall traversal client
The VCS can act as a firewall traversal client on behalf of SIP and H.323 endpoints registered to it, and any
systems that are neighbored with it. To act as a firewall traversal client, the VCS must be configured with
information about the systems that will act as its firewall traversal server.
systems that are neighbored with it. To act as a firewall traversal client, the VCS must be configured with
information about the systems that will act as its firewall traversal server.
You do this by adding a traversal client zone on the VCS client (
Configuration > Zones > Zones
) and
for more
information. You can create more than one traversal client zone if you want to connect to multiple traversal
servers.
servers.
Note that:
n
In most cases, you will use a VCS Control as a firewall traversal client. However, a VCS Expressway can
also act as a firewall traversal client.
also act as a firewall traversal client.
n
The firewall traversal server used by the VCS client must be a VCS Expressway.
VCS as a firewall traversal server
The VCS Expressway has all the functionality of a VCS Control (including being able to act as a firewall
traversal client). However, its main feature is that it can act as a firewall traversal server for other Cisco
systems and any traversal-enabled endpoints that are registered directly to it. It can also provide TURN relay
services to ICE-enabled endpoints.
traversal client). However, its main feature is that it can act as a firewall traversal server for other Cisco
systems and any traversal-enabled endpoints that are registered directly to it. It can also provide TURN relay
services to ICE-enabled endpoints.
Configuring traversal server zones
For the VCS Expressway to act as a firewall traversal server for Cisco systems, you must create a traversal
server zone on the VCS Expressway (
server zone on the VCS Expressway (
Configuration > Zones > Zones
) and configure it with the details of
You must create a separate traversal server zone for every system that is its traversal client.
Configuring other traversal server features
n
For the VCS Expressway to act as a firewall traversal server for traversal-enabled endpoints (such as
Cisco MXP endpoints and any other endpoints that support the ITU H.460.18 and H.460.19 standards), no
additional configuration is required. See
Cisco MXP endpoints and any other endpoints that support the ITU H.460.18 and H.460.19 standards), no
additional configuration is required. See
for more information.
n
n
.
Firewall traversal and Advanced Networking
The Advanced Networking option key enables the LAN 2 interface on the VCS Expressway (the option is not
available on a VCS Control). The LAN 2 interface is used in situations where the VCS Expressway is located
available on a VCS Control). The LAN 2 interface is used in situations where the VCS Expressway is located
Cisco TelePresence Video Communication Server Administrator Guide (X8.5.1)
Page 55 of 563
Firewall traversal
About firewall traversal