Design a network for voip over wan

Similar Messages

• Hosted dns-sd for bonjour over wan

  Has anyone found a company that will host a dns domain that supports dns-sd registration..
  I have installed the bonjour pref pane and would love to have someone manage a dns server that I can have a domain and register my services. For example, I would like to be able to access my airdisks at work and do so via bonjour and not use something like dyndns.org
  I know how to work around this, but it would be nice to pay $20 a year for a domain or subdomain that supports bonjour wan service registration

  As I mentioned above, dyndns is not the optimal solution. dnydns.org does not support dns service discovery.
  http://www.dns-sd.org/
  Normal link-local bonjour uses multicast dns to do service discovery. (eg. what airdisks are available on this network). Bonjour over the WAN relies on having a dns server configured with some apple extensions that let applications "register" their services with a central dns server that then keeps track of different service types. Usually this registration is controlled via simple authentication (username/password). Then, I would configure the bonjour pref pane (http://www.dns-sd.org/ClientSetup.html) to register my hosts services (itunes shared library, ichat bonjour, ssh server, web server, etc) in a specific domain. Then when another client that is configured correctly fires up an application that supports bonjour (like itunes) not only will it see itunes shares on the same subnet, but it should also see ones that are in bonjour dns-sd/wan domains that my host is configured to query.
  You can only register services in one domain, but you can query multiple domains.
  So, what I want is to have something like dyndns.org, but would let me use it to register my services (like my airport extreme connected printers and airdisk) so that when I am at work, I can use the airport disk utility menu bar item to mount my drives from home at work.

• Is Low MTU (ie 320) for VoIP over Frame-relay can be used to avoid serialization delay for large data packets?

  In order to provide voice quality for VoIP, is FR fragmentation equivalent to lowering the MTU size for the serial subinterface of a Frame relay subinterface?
  Is there any isues like stop communications, using Low MTU ?

  If the router belongs to any of the
  platform listed below, then use
  FRF12 for you fragmentation. The MTU size
  lowering also works but this can cause a high over
  head as it can't be specified on a per dlci level.
  With multiple dlci i.e. subinterfaces use per dlci fragmentation.. this helps reduce the overhead of changing the MTU size of the physical interface.
  Snip config example.( __Must be configured on both side of the termination___)
  PHONE 3333312---ROUTERA ----DLCI 100----ROUTERB ---PHONE 2111123
  ROUTER A
  dial-peer voice 1 voip
  destination-pettern 2T
  session target ipv4:10.10.10.2
  int ser 0/0
  encap frame-relay
  frame-relay traffic-shaping
  no ip address
  interface serial0/0.1 point-to-point
  ip add 10.10.10.1 255.255.255.252
  frame-relay interface-dlci 100
  class voice
  map-class frame-relay voice
  frame cir 64000
  frame bc 640
  frame mincir 64000
  frame-relay ip rtp priority 16384 16383 48
  frame fragment 80
  frame fair-queue 64 256 0
  ROUTER B
  dial-peer voice 3 voip
  destination-pettern 3T
  session target ipv4:10.10.10.1
  int ser 0/0
  encap frame-relay
  frame-relay traffic-shaping
  no ip address
  interface serial0/0.1 point-to-point
  ip add 10.10.10.2 255.255.255.252
  frame-relay interface-dlci 100
  class voice
  map-class frame-relay voice
  frame cir 64000
  frame bc 640
  frame mincir 64000
  frame-relay ip rtp priority 16384 16383 48
  frame fragment 80
  frame fair-queue 64 256 0
  This should help if your router is
  c2600, c3600, mc3810, c7200, c1750
  all running the right level of IOS.
  12.1(5)T and above should work well.

• ARD or DS for deployment over WAN?

  Hi, I was hoping to get some advice on best practice for a particular scenario, any input would be appreciated :-)
  Scenario
  We have two sites, site "A" and site "B".
  We have a server at both site A and B.
  Site A is our primary location - all clients / server reside on a LAN - management is very straight forward.
  Site B however, is located over 40 minutes away and is accessible via a WAN. 
  I use a combination of tools for management at site A, including DeployStudio, ARD and OS X Server 10.9, however I now have to start managing both sites.
  1) When using ARD at site A, is it possible to direct clients (at site B) to a local repository, rather than transferring huge packages over the WAN - which seems to be exceptionally unreliable?
  2) Is there a more effective way of doing this, would DeployStudio or similar product be a better tool for this job?
  Thanks

  ARD itself does not have any repository at all not even for a single site. It works by you browsing for and pushing the package. As has been pointed out this does not work well for a multi-site situation.
  For a multi-site situation your options would be to use -
  Munki,
  Simian,
  Casper JDS
  Simian can be considered an extension of Munki with more support for a geographically distributed setup.
  Casper can have multiple JDS servers and the master can feed packages to additional JDS server with at least one being located at each site. I feel Casper would be the easiest to get running but unlike the others it is not free.
  DeployStudio is something else entirely but it also has the ability to have a master server and slaves that sync to it.

• Bandwidth requirement for Storage over WAN

  Working on a project for storing data across geographically dispersed locations, I need to be able to estimate how much bandwidth that will be required to do remote mirroring. I assume the initial data has been loaded on my backup servers at the 2 locations but I need to have a fair idea of how much bandwidth remote mirroring will translate to for approx 1Gb change in my main site server data.
  Could anyone please help out.

  The amount of bandwidth required will be a function of two details. 1) what is the timeframe that the change takes place over? ie. does the 1gb change happen in 1 hr, 1 day, or 1 week? and 2) Since this remote mirroring will be async, how much delta between the databases are you willing to allow? ie. can the remote be 1 min out of sync, 10 min out of sync, or more? Since most db work is bursty, if we are given longer periods to sync the data, we can use a lower bw link.
  These two questions need to be thought about and answered before a good answer can be given. You need to balance the cost of lost data vs. the cost of higher throughput circuits.

• The whole configure over WAN thing is confusing me I don't want anyone to be able to access my airport extreme over the WAN.  How can I check to make sure that is the way I have it setup?

  I just bought a new airport extreme and I want to make sure that is NOT set up for "configure over WAN".  How do I check to make sure that is how I have it set up?  I only want access to the base via WPA2 password

  Open AirPort Utility, select the AirPort Extreme, and click Manual Setup
  Click the Base Station tab located just below the row of icons
  Remove any check mark that might be in the box next to Allow Setup over WAN
  Click Update to save your settings and the AirPort Extreme will restart in 25-30 seconds
  For what it is worth, if you leave the box checked, any computer that tries to access the settings on the Airport Extreme will be asked for the device password....not the wireless network password.

• AirPort Utility 6.0 - AirPlay over WAN

  What's this option do exactly?
  How to access/use AirPlay over WAN?

  My guess is that if you sign the Airport Express into your icloud account, you'll be able to stream audio to the Express even if you are aren't on the local network.  Bonjour over WAN magic.  Similiar to how you can share an attached USB drive over WAN.  I'm having a hard time thinking of a good use for this other than freaking out other people living in your house  
  WAN = wide area network, i.e. the internet at large.

• Cluster Over WAN Test

  We are planning to put a subscriber across WAN.We have enough bandwidth (6MB) bewteen sites and we followed all the SRND recommendations(especially QOS) for Cluster over WAN.
  I used extended ping with type 3 (as in SRND) to test the RTT from a switch at remote site to publisher CM and it came less then 40 ms.
  Is there any other test we can do so we can test the RTT and bandwidth is enough for ICCS traffic.
  Thanks for the help
  Bala

  you could put a good load of data on the wire across the wan, see if you can get 3-4mb (or whatever your maximum is) and then test your pings.
  use the results added to the number of phones (BHCA) and see what the numbers 'should' look like.
  be sure to use the bandwidth calculator if you haven't already. try for many or all different codecs.
  see the bandwidth calculator at the following link: (requires cco account)
  http://tools.cisco.com/Support/VBC/do/CodecCalc1.do

• Blue tooth for voice over IP

  All the doc. I read is centered on Blue Tooth for computer to computer comm's. Can I use my Blue tooth head set (e.g. Motorola H500) for VOIP over, e.g.:  Skype or Sametime Connect?

  Raschoen,
  If you can pair your bluetooth headset to your computer, then you can use it for Skype or other VoIP software. Just go to the options in the application (in Skype go to Tools, Options, Audio Settings) and select your bluetooth headset as Microfone/Input and Speakers/Output, from the list of available devices.
  I have used both a Sennheiser and a Jabra bluetooth headsets and they worked great.
  Have fun!

• Eigrp - How to modify Admin distance for redistributing connected links and over WAN

  We have a single EIGRP domain 101 across 2 locations (A and B) separated by a WAN link. Each location has a number of L3 switches at the IDF behind the router which has  the L3 vlans VL1, VL2 etc. We run eigrp 101 across all the switches and on the routers but we dont advertise any of the L3 vlans on them and we do redistribute static and connected for the static and the vlans to be distributed on eigrp.
  Qn
  1. How do i reduce the admin distance of the directly connected vlan on IDF on our core switch. ie. Vl1 and Vl2 that are distributed via connected has a admin distance of 170 locally as the other switches sees that as External without having to advertise the networks individually on each switch.  
  2. Is that possible to increase the admin distance over the WAN link without having to create a 2nd eigrp domain. ie.. Add a admin distance of say 50 over the WAN link  and that way devices on both sides do see that there is a 130 distance for the remote side and 90 for local for admin distance.
  Why?
  I am trying to separate two locations and i don't think we will be able to create an additional domain and i am trying to see alternate methods of achieving this.  
  Additional info-
  The design i mentioned has 2 locations with a WAN connection and i have mixed (90/170) distance based on where the routes are coming(eigrp/connected/static) from eventhough  everything is within the same network.  We only have 1 Eigrp network 101 and was looking to alter the AD for just connected if at all possible.
  Assuming i put in all the routes into the network how can i make site 2 see the site 1 network with a larger admin distance and 1 to 2 with a larger admin distance while not altering the admin distance within the local site.
  Underlying reason: We are getting a MPLS link(lower bandwidth) connecting to site 3,4 and 5 at both sites and wanted to clear the internal routing first before i can add them or redistribute them into bgp.

  If these two sites are connected via a P2P link and you are exchanging EIGRP routes across it then you need to be aware of what you redistribute into BGP because each site will know about it's own subnets but also the other sites subnets.
  If you just redistribute all EIGRP at both sites then it's a lottery as to which MPLS connection the non EIGRP sites use.
  So you either need to -
  1) when you redistribute EIGRP at each site into BGP use a route map and only allow the local networks for that site
  or
  2) if you want each of the EIGRP sites to back each other's MPLS connection up you could have them both advertise out all networks ie. their own and the other EIGRP site's networks but modify the BGP attributes of the non local networks so they are least preferred.
  You still want to use a route map to ensure only the local and other EIGRP sites network are redistributed because remember you are also receiving BGP routes from the non EIGRP sites and redistributing these into EIGRP at each site and these are exchanged via the P2P link as well.
  It realty depends on what you are trying to do.
  The actual basic redistribution is very straightforward, see this link -
  http://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/113506-failover-eigrp-bgp-00.html
  but you need to decide what you are going to do in terms of EIGRP to BGP advertisements as covered above.
  I'm not trying to make things complicated for you but because you have a P2P link connecting these sites and you are running EIGRP over it then any routes received via BGP will be redistributed into EIGRP and you need to make sure they are then not redistributed back into BGP on the other site router.
  Jon

• Designing services for xml over http client requests

  Hi
  I am new to WebServices and Weblogic Integration. I have been using it for only over a month. I have a very basic design issue.
  We have to provide a service that
  1. accepts xml over http requests
  2. Returns a request ack
  3. Process Form a response -This activity consumes time so it will be made asynchronous
  4. Send the response as xml over http
  5. Wait for response ack
  6. Get another type of request from client, the processign of which depends on the result of the previous request .. and so on..
  The problem here is that Webservices accepts only SOAP messages but our client will send raw xml messages. Also we need to remember the condition of the previous state.
  I dont know if my assumption that SOAP is used is right.
  Please tell me how to design a raw xml based system without using SOAP messages.
  Thanks
  nithya

  I don't see nothing wrong with your code, there must be something else happening.
  You sure you are not being some proxy server?? but even then you are making a post request so it shouldn't be happening.
  MeTitus

• Aperture shared over a network for viewing with Front Row?

  Aperture shared over a network for viewing with Front Row? I can view iPhoto from my laptop or desk top but I cannot find a way to share Aperture over the network.

  If tested to work with other MacOs versions, this should be a main FAQ listed on Apple's Support website for Aperture and/Mac OSX.

• Cisco Unity with Microsoft Exchange over WAN Question

  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-priority:99;
  mso-style-qformat:yes;
  mso-style-parent:"";
  mso-padding-alt:0in 5.4pt 0in 5.4pt;
  mso-para-margin:0in;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:11.0pt;
  font-family:"Calibri","sans-serif";
  mso-ascii-font-family:Calibri;
  mso-ascii-theme-font:minor-latin;
  mso-fareast-font-family:"Times New Roman";
  mso-fareast-theme-font:minor-fareast;
  mso-hansi-font-family:Calibri;
  mso-hansi-theme-font:minor-latin;
  mso-bidi-font-family:"Times New Roman";
  mso-bidi-theme-font:minor-bidi;}
  A customer has several offices. Each office has a separate Exchange Server. The partner was considering a single Unity deployment connected to all of the exchange servers over the WAN, but has decided against that because the latency of the WAN is too high to do this. They are looking for a best practice way of deploying Unity for these multiple Exchange servers at multiple sites. This might mean a separate Unity server for each exchange server at each site .
                  However, we’re wondering if there is a better way to do this. With multiple unity servers we’ll likely have different prefixes for each unity server at each location . This is something that the customer would like to avoid. We’re wondering if there any best practices for a deployment like this that we can offer as options for the customer.
  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-priority:99;
  mso-style-qformat:yes;
  mso-style-parent:"";
  mso-padding-alt:0in 5.4pt 0in 5.4pt;
  mso-para-margin:0in;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:11.0pt;
  font-family:"Calibri","sans-serif";
  mso-ascii-font-family:Calibri;
  mso-ascii-theme-font:minor-latin;
  mso-fareast-font-family:"Times New Roman";
  mso-fareast-theme-font:minor-fareast;
  mso-hansi-font-family:Calibri;
  mso-hansi-theme-font:minor-latin;
  mso-bidi-font-family:"Times New Roman";
  mso-bidi-theme-font:minor-bidi;}
  I have found some related information but really customer is altogether looking for an option away from Exchange networking over WAN.
  I found:
  “Multi-Site WAN with Distributed Messaging”
  http://www.cisco.com/en/US/docs/voice_ip_comm/unity/5x/design/guide/5xcudg040.html#wp1077309
  “Networking Options Requirements for Cisco Unity”
  http://www.cisco.com/en/US/products/sw/voicesw/ps2237/prod_installation_guides_list.html
  Design Guide for Cisco Unity also talk as much is there in the first URL.
  Please Help!

  This may be counter to your customer's desire or requirements but I must ask the question.  Has the customer considered Unity Connection vs. Unity?  Granted, Unity Connection provides integrated messaging whereas Unity is the unified messaging application; however, CUC has become Cisco's flagship messaging product over the last couple of years and I only see this expanding to be honest.  So, for new installs - I push hard on Unity Connection.  Sometimes, it's a sell but sometimes the customer has a hard requirement for UM and thus you have to go with UM.  In your scenario, your customer could potentially save a LARGE amount of money as CUC is not dependent upon Exchange at all; however, you still have the option to tie into Exchange 2003/2007 as an external service where users can access messages in a 3rd-party message store and also access calendar data and so forth.  The platform is very feature rich.  Many of my current Unity customers are migrating off of the platform to the more "agnostic" CUC platform to avoid issues caused by such dependence on AD/Exchange.  In addition, as Microsoft continues to develop and push it's own UM solution - integration for Unity is being forced to change (ex: changes to MAPI in 2010 caused problems for Cisco and required them to rework a bit of the underpinning integration points between Unity and Exchange).  With CUC, you also have the flexibility to implment a dial plan within voicemail system itself...not to mention it is extremely scalable.
  Hailey
  Please rate helpful posts!

• Polycom V500 over WAN and QoS

  we are trying to run two polycoms over WAN. One side is able to see the other while the other side cannot. The side that is unable to see the other has the following QoS setup on the WAN interface:
  srr-queue bandwidth share 10 10 60 20
  srr-queue bandwidth shape 10 0 0 0
  queue-set 2
  msl qos trust dscp
  auto qos voip trust

  Your configuration is not from a WAN port but from a LAN port. Please note that just because the service provider hands you an Ethernet port, that does not mean you can use any old LAN switch to connect to it. The service provider is using Ethernet to keep their costs down but it is still a WAN port and requires a WAN interface on your terminating equipment to properly schedule and queue the traffic.
  Examples of a WAN Ethernet (FastEthernet, GigabitEthernet) port are most any ISR router, a Catalyst Metro switch (i.e. 3750-METRO), the WAN blades on a 6500 switch (not LAN blades!), or the Ethernet WAN/Metro SPA adapters for a 6500/7600 SIP module.
  Note that a LAN switch assumes high speed interfaces and not much of a speed mismatch between ports. A LAN port connected to a slow WAN will not be able to buffer anywhere close to amount of traffic that comes through the switch to this port and will cause a HOL (head of line) blocking scenario; and this assumes you setup the port speed and shaping/sharing parameters correctly.
  A LAN switch port output buffers are measured in K and will handle 4 to 10 packets of bursting; on the other hand, a WAN port's output buffers are measured in M and will handle thousands of packets of burst.
  The effects can be staggering. It is not uncommon for a service provider WAN/MAN to be terminated with a bunch of cheap LAN switches that drop upwards of 90% of the traffic destined for the WAN! Just because of lack of buffers on the output queue side and massive oversubscription between the LAN side and the WAN side, using a LAN port.
  And we haven't even started talking about traffic shaping yet to match the speed of transmission from a WAN port to that of the contracted rate such that it doesn't exceed the speed on the receiving side.
  Remember, regardless of the size of the WAN port (T1, E1, DS-3, OC-3, 10Mb, 100Mb, 1000Mb), the 'width' of the connection is serial and still only 1 bit wide. Just the rate of bits being sent per second is different.
  The key concept that often gets lost is if you have a GigabitEthernet port on a LAN switch connected to a WAN or MAN in which you are purchasing 200Mb of service, you are, by definition, dropping 80% of the traffic in the service provider network (or at the ingress port to the service provider!). This is regardless of how 'busy' or utilized the GigabitEthernet link is. A single packet of data, say 500 bytes, will be sent out the GigabitEthernet port at 1 *billion* bits per second. Unfortunately, you may only have paid for 200 *million* bits per second as your contracted access to the service provider's network. Trust me, the service provider will deal with this discrepancy by policing 80% of your data to the bit bucket and they don't care what type of data it is.
  So it doesn't matter how much data you are sending, a 1% utilized WAN connection using a LAN switch in this way could still be dropping 80% (or more) of the traffic!
  A final note: Please don't be confused by most switch vendor's terminology regarding shaping or sharing of multiple limited output queue resources on their LAN switches, this is *NOT* the same thing as traffic shaping or long queues on a WAN router port or WAN/METRO switch port. This includes Cisco. This is why Cisco (and Juniper and Foundry, etc.) sell switches with METRO or WAN interfaces on them and why they are more expensive than LAN only switches.

• VOIP over VPN need clarification

  Hi,
  Recently I have implemented Site-to-Site VPN between ASA and sonic wall firewall.
  Problem: I can able to make call from ASA side(inside) Ip phone to sonic wall (inside) side Ip phone and vice versa and it’s ringing, But not able to hear voice. So I created VOIP over VPN configuration and applied appropriate service policy towards outside interface. But still I was not able to hear voice.
  Tried below mentioned t’shot steps:
  From ASA side we had two subnets (10.20.1.x/24 – Data and 10.20.2.x/24 – Voice ) and one subnet (192.168.x.x/24 ) from sonic wall side as interesting traffic ( lan to lan). When I configured site-to-site configuration on both ends my phase-1 and phase-2 came UP and can able to communicate between each other. (In interesting traffic I created two objects and bind those objects as one object-group for source i.e. ASA side lan subnet and one object for remote-Lan as destination)
  My call manager is rest behind ASA and Ip phones needs to communicate from sonic wall side to inside ASA.
  I can able to make call from ASA side(inside) Ip phone to sonic wall (inside) side Ip phone and vice versa and it’s ringing, But not able to hear voice. So I created VOIP over VPN configuration and applied appropriate service policy towards outside interface. But still I was not able to hear voice.
  So, I  done supernetting the data subnet and voice subnet into single network i.e. 10.20.x.x/16 at ASA side and applied the configuration changes (changed ACL, nonat rule, Voice QOS ACL accordingly), and I’m able to hear voice both end and I can communicate properly from ASA inside Ip phone to Sonic wall inside Ip phone and vice versa.
  My question: I’m not understanding the logic how this supernetting resolved dead voice issue.
  Pls clarify my question I’m bit confused on this.

  It's not recommended. Although VPNs guarantee a secure pipe end-to-end, they don't guarantee latency and variations in latency (Jitter).