Video over ip with cisco 891

Hello,
We used to communicate with our office in Vietnam by using a video conference terminal (polycom HDX 7000)
We just used H.323 protocol, without any gatekeeper, and called the other endpoint terminal with just the IP address.
Few days ago, we changed our internet access router with a cisco 891.
It's now impossible to etablish call with our video conference system.
I configured NAT to redirect specific ports, but it still doesn't work.
Maybe there is something special to configure on this router ?
I disabled the firewall, but no change !
Anyone can tell me if there is a service to activate/desactivate, or antything else, to use H.323 protocol this way ?
Thanks a lot
[sorry for my poor english]

Thanks a lot.
I disabled h323 ip nat service with "no ip nat service H323" and then I was able to etablish a call.
But there was still a little problem, I was able to send audio and video but I was unable to received it.
I had to select "NAT is not compatible with H323" on my Polycom terminal.
Now all is OK, thanks.

Similar Messages

  • Voice over Wireless with Cisco phones 7921 and 7925

    Hello experts,
    I made an wireless audit for a company.
    They have 2 WLCs 5508 in HA mode, with APs 2602 for indoor and 1552. Version of the WLC : 7.6.120.0
    At the end of the day we noticed that the roaming between indoor and outdoor access points is sometimes failing and results to a complete disconnection of the wireless phone (7921 or 7925) from the network. When people go from the indoor to the outdoor area, there is no problem. The problem comes when people are coming from the outdoor to the indoor.
    Also, on the WLC, the power lvl of the outdoor APs are set to 1 ... Is it good or not ?
    My question is, is there any known issue about Voice over wireless with WLC 5508-7.6.120.0 with APs 2602 and 1552 ?
    Maybe it should be better to upgrade to 7.6.130.0 ?
    Thanks in advance,
    Alexis

    Normally yes.
    Is there a way to troubleshoot what's going on with the phones ? Maybe a "show client detail MAC address* on the WLC ?
    Here are some logs when the phones are losing the network :
    *Dot1x_NW_MsgTask_4: Apr 09 12:44:21.320: #DOT1X-3-INVALID_WPA_KEY_MSG_STATE: 1x_eapkey.c:957 Received invalid EAPOL-key M2 msg in START  state - invalid secure bit; KeyLen 40, Key type 1, client 00:24:d7:83:56:dc
    *apfMsConnTask_6: Apr 09 12:28:32.668: #APF-3-VALIDATE_CCKM_REASS_REQ_ELEMENT: apf_utils.c:2506 Could not validate the CCKM Reassociation request element.Received Timestamp deviation > 1sec in CCKM Info Element from mobile. Mobile:4c:00:82:85:6e:e1,  AP:1
    *Dot1x_NW_MsgTask_1: Apr 09 12:26:53.964: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 74:26:ac:63:8c:a9 - got 00 00 00 00 00 00 00 03, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_1: Apr 09 12:26:53.929: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 74:26:ac:63:8c:a9 - got 00 00 00 00 00 00 00 02, expected 00 00 00 00 00 00 00 04
    *apfMsConnTask_4: Apr 09 12:24:34.959: #APF-3-VALIDATE_CCKM_REASS_REQ_ELEMENT: apf_utils.c:2506 Could not validate the CCKM Reassociation request element.Received Timestamp deviation > 1sec in CCKM Info Element from mobile. Mobile:78:da:6e:f6:5f:89,  AP:5
    *Dot1x_NW_MsgTask_0: Apr 09 12:22:30.217: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 4c:00:82:85:1d:68 - got 00 00 00 00 00 00 00 03, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_4: Apr 09 12:22:30.206: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 4c:00:82:85:b3:ac - got 00 00 00 00 00 00 00 03, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_4: Apr 09 12:22:30.186: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 4c:00:82:85:b3:ac - got 00 00 00 00 00 00 00 02, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_0: Apr 09 12:22:30.167: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 4c:00:82:85:1d:68 - got 00 00 00 00 00 00 00 02, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_6: Apr 09 12:22:29.672: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 78:da:6e:f6:14:2e - got 00 00 00 00 00 00 00 03, expected 00 00 00 00 00 00 00 04
    *Dot1x_NW_MsgTask_6: Apr 09 12:22:29.638: #DOT1X-3-INVALID_REPLAY_CTR: 1x_eapkey.c:445 Invalid replay counter from client 78:da:6e:f6:14:2e - got 00 00 00 00 00 00 00 02, expected 00 00 00 00 00 00 00 04
    *apfMsConnTask_3: Apr 09 12:19:22.098: #APF-3-VALIDATE_CCKM_REASS_REQ_ELEMENT: apf_utils.c:2506 Could not validate the CCKM Reassociation request element.Received Timestamp deviation > 1sec in CCKM Info Element from mobile. Mobile:4c:00:82:85:6e:e1,  AP:5
    *osapiBsnTimer: Apr 09 12:13:36.031: #LOG-3-Q_IND: spam_lrad.c:53542 The system is unable to find WLAN 2 to be deleted

  • IPT over IPSEC lines with cisco 2821

    We are implementing a IPSEC VPN Connection over leased lines using cisco 2821 without AIM-VPN Hardware accelerators.
    The line is 2 Mbps and should carry also IPtelephony traffic (4-5 conversations). Will we have problems by mastering the jitter? Since the traffic is devided in small packet, il the 2821 able to handle it accordignly?
    Thanks and bye Giorgio

    Giorgio,
    You should be fine with this configuration. Running voice and video over VPN is certainly a viable solution. It is commonly known as V3PN. Take a look at the V3PN SRND below for best practices, planning, and design tips. As mentioned in this document, IPSEC adds a trivial amount of delay (2 - 5 msec.) to voice deployments.
    V3PN SRND
    http://www.cisco.com/application/pdf/en/us/guest/netsol/ns241/c649/ccmigration_09186a00801ea79c.pdf
    Hope this helps. If so, please rate the post.
    Brandon

  • TS2709 I have AppleTV and Ipad2 running VJay app to my TV over a private cisco router disabled firewall but I keep loosing the video on my TV after a few minutes what can I do?

    I have AppleTV and Ipad2 running VJay app to my TV over a private cisco router disabled firewall but I keep loosing the video on my TV after a few minutes what can I do?

    I also get this problem on my iPad, so probably not related to the AppleTV. On the iPad I restarted Airport Extreme this time, and then the iPad saw my Home Sharing.
    So to recap, restarting the router or Airport Express allowed the iPad and AppleTV to see Home Sharing. Restarting AppleTV also allows AppleTV to see Home Sharing.
    So does anyone have any idea?
    Thanks

  • Cisco 891 not getting IP address with DHCP with latest IOS

    Hi,
    I have a few Cisco 891 routers that are configured as DHCP clients on the WAN interface.
    For some reason when I boot the router with a late IOS, the router is not receiving an address.
    It works just as expected with the older IOSes.
    Any ideas of what changed?
    This is how the interface is configured:
    interface FastEthernet8
     ip address dhcp
     no ip redirects
     no ip unreachables
     no ip proxy-arp
     duplex auto
     speed auto
     no cdp enable
    This IOS does not work:
    c890-universalk9-mz.154-3.M2.bin
    While these do work:
    c890-universalk9-mz.150-1.M7.bin
    c890-universalk9-mz.151-2.T2.bin
    c890-universalk9-mz.152-1.T1.bin
    Doing a "show ip interface brief" shows that FastEthernet8 is unassigned with the affected IOS.
    With the older IOSes there is an IP address.
    I had to downgrade two routers due to this issue, and did not have  plenty of time to troubleshoot.
    Both of the routers are connected to DSL from the same ISP...
    Anyone seen anything like this  before?

    Add another one to the list.
    I have a MacBookPro3,1 that connects to WIFI no problem. It used to connect to ethernet when I originally bought it, however I've been using WIFI exclusively for the past 2 years.
    Recently I had a need to connect via ethernet and it wouldn't work at home (apple airport router). I next tried connecting via ethernet at a friends house using a linksys WRT54G, no dice either. I have the computer in the lab today (University Network) and I get the same error. 3 different locations, 3 different routers, all same problem. It used to connect to home and university networks ethernet right away.
    IP address assigned is 169.xxx.xxx.xxx - subnet - 255.255.0.0
    no other info. It's showing up as connecting to the network, but unable to communicate with DHCP. It does work if I enter all of the information in manually.
    At first I thought I had messed something up in networking preferences as I tend to play around with things alot. However I did a complete system format, and fresh install of OSX Lion and I still have the same problem, without any of my meddling around to confuse things.
    What gives?

  • Cisco 2811 routers to route video over ip for polycom equipment.

    Hi forum,
    We are currently using polycom equipments over ISDN links for video conferencing, however, we intend to switch to our EIGRP E1 lines for that. all our sites are currently using 2811 routers to route both data and voip traffic. How do I provision the network so that I can use my E1 lines for video over ip, How should I design it?
    Besides, How do i provide video over ip service to my mobile users who vpn into my network.
    Thanks and best regards,
    paul

    first, on provisioning your network for video over ip, make sure you can implement the QoS required to provide a clear, unchoppy video stream.
    your design could look something like the following:
    polycom >> network >> router >> E1 >> router >> network >> user
    (very basic description, you may require more detail depeding on your needs)
    also, for video over ip to your vpn users, you might be able to use something like cisco IPTV or the likes. (depending on the type of video you want to provide your users)
    please see the following link for video over ip for polycom:
    http://www.cisco.com/en/US/tech/tk1077/technologies_configuration_example09186a0080111c1b.shtml#configqos
    please see the following link for more QoS for video conferencing info:
    http://www.cisco.com/en/US/tech/tk543/tk757/technologies_tech_note09186a0080094968.shtml
    please see the following link for info on video over ipsec vpn:
    http://www.cisco.com/en/US/netsol/ns340/ns394/ns171/ns241/netbr09186a0080125154.html

  • Camera for use with Cisco Unified Video advantage?

    Cisco is EOLing the Cisco Unified video advantage product that we thought would be a good fit for us to integrate video with some of our IP Phones.  I can still order the Video Advantage software until later in the year from Cisco but they have discontinued the Cisco VT Camera III that was previously used with this product. 
    They list the Logitech C920-C web cam as a replacement for this product, but it seems to be difficult to locate.  The realease notes say you can use a 3rd party camera but Cisco does not officially support it. 
    Has anyone used any third party cameras with Cisco Unified Video advantage and if so which would you recomend.  I was hoping to use the Logitech HD Pro Webcam C920 (the generic non Cisco version) but wasn't sure if it would work ok? 
    What do you think?  This will be using Unified Video Advantage 2.3. 
    Jim                   

    Hi,
    We have been using Video advantage v 2.1.2 with 7940 series phone since long, it works fine with almost all 3rd party camera`s and even with the inbuilt laptop cameras.
    v 2.3 is an enhanced version as compared the one which we are using. So i would suggest you to go ahead and try it with any good qaulity webcameras available in market.
    Further to add there are certain PC requirements which needs to be met, the same can be found in the below link.
    http://www.cisco.com/en/US/docs/video/cuva/2_3/release/notes/relnote_cuva23.html#wp1118706

  • Welcome to the Voice and Video over WLAN Discussion

    Welcome to the Cisco Networking Professionals Connection Wireless Forum. This conversation will provide you the opportunity to discuss issues surrounding Voice and Video over WLAN. We encourage everyone to share their knowledge and start conversations on issues such as bandwidth intensive wireless applications, and any other topic concerning Voice and Video over WLAN.
    Remember, just like in the workplace, be courteous to your fellow forum participants. Please refrain from using disparaging or obscene language or posting advertisements.
    We encourage you to tell your fellow networking professionals about the site!
    If you would like us to send them a personal invitation simply send their names and e-mail addresses along with your name to us at [email protected]

    This is easily done with dial peer statements . The dial peer in your originating router must route the calls to the terminating router first. That would look like :
    dial-peer voice xxxxx voip ( the xxxxx is just a tag)
    destination-pattern 45... (that would route any 5-digit calls beginning with 45)
    session-target ipv4:xxx.xxx.xxx.xxx (ip address of the terminating router)
    If digitones are to be dialed after the connection is established, use the statement:
    dtmf-relay-h.245-alphanumeric
    You could also use a statement to specify the codec to be used:
    codec g711ulaw
    You would need multiple voip dial peers if the calls were going to different routers based on the dialed digits. If all calls are sent to the same terminating router, use all wild cards in the dest-pattern statement.
    At the terminating router configure pots dial peers:
    dial-peer voice xxxxx pots
    dest-pattern 45...
    port x/x (whichever port the call is to be terminated on)
    prefix 45 (this re-inserts matched digits which are stripped off by the pots dp)
    Repeat for other ports which will receive calls.
    Paul

  • Ask the Experts: Single Sign-On with Cisco WebEx Meetings Server, Internet Reverse Proxy, and Enterprise License Manager Solutions

    With Arun Kumar
    Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about Single Sign-On (SSO) with Cisco WebEx Meetings Server (Cisco WMS), Internet Reverse Proxy (IRP), and Enterprise License Manager (ELM) solutions.
    SSO standards such as Security Assertion Markup Language (SAML) 2.0 provide secure mechanisms for passing credentials and related information between different websites that have their own authorization and authentication systems. SSO enables simplified user authentication and management.
    IRP provides public access, enabling users to host or attend meetings from the Internet and mobile devices. Although IRP is optional, Cisco encourages its use because it provides a better user experience for your mobile workforce.
    Example question topics include:
    SSO profiles and SAML 2.0 Identity providers (IdPs) supported in Cisco WMS
    Basic configuration of IdPs
    Interaction between IdPs and Cisco WMS
    Difference between the cloud client implementation and Cisco WMS
    Meeting access behavior in a split-horizon network topology with SSO
    How to enable public access to Cisco WMS
    Cisco WMS ELM operations
    Cisco WMS ELM compared to other unified communications ELM or standalone ELM and compatibility/inoperability between them
    Arun Kumar is a team lead in the San Jose Conferencing Technical Assistance Center. He has over eight years of experience in conferencing technology and specializes in Cisco Unified Meeting Place Express and Cisco WebEx Meeting Server. He joined Cisco in 2010 as an escalation engineer for the Cisco Telepresence group. Before joining Cisco he worked for the UK's third-largest internet service provider Supanet on VoIP technology and the *Nix domain. Kumar holds a master of science degree in computer science from Sikkim Manipal University in India, and he holds CCIE (Voice) and VMware Certified Professional certifications.
    Remember to use the rating system to let Arun know if you have received an adequate response.
    Arun might not be able to answer each question because of the volume expected during this event. Remember that you can continue the conversation on the Collaboration, Voice, and Video community Other Subjects subcommunity shortly after the event. This event lasts through Monday May 17, 2013. Visit this forum often to view responses to your questions and the questions of other Cisco Support Community members.

    Hello Mobile Service,
    CWMS and Jabber integrations:
    http://www.cisco.com/en/US/docs/voice_ip_comm/jabber/Windows/9_1/JABW_BK_E4CC9599_00_environment-configuration-guide_chapter_01.html#JABW_TK_SF2ED5E1_00
    In above link start from section: Set Up Cisco WebEx Meetings Server on Cisco Unified Presence
    then move to section: Add Cisco WebEx Meetings Server to a Profile
    Once done, move to section: Specify Conferencing Credentials in the Client side. You will see above server already listed there, just go ahead and enter your username and password (pleae make sure this user already exists on your CWMS) and accept any certificate/s if presented. Jabber Integration is done and you can start testing the same.
    Attached CWMS - AFDS integration doc.
    Please let me know if any furhter question.
    Thanks, Arun

  • VOIP over broadband - with QoS?

    At the moment we use Cisco 2600 routers with 256k BT kilostream connections to our stations, to provide IT and Cisco VOIP. The kilostream connections cost about ?5k/station/year.
    We want to stream video for the IT, but the kilostream isn't up to it. We also have BT broadband (20:1 contention), to the station, generally between 2-8M, which costs about ?500/station/year. We can do video over that fine.
    My questions are:-
    1) I'd like to get rid of the expensive kilostream and just use broadband. However, we have about 10-25 VOIP phones on each station, and we keep being told that broadband could not support that, the latency is too high, the reliability too low, that it needs QoS and you can't get that with this infrastructure etc etc. Can I use Cisco VOIP over broadband to 2600 routers, would QoS work and what about the quality/reliability? If it is possible, any hints as to how?
    2) As an alternative, I was wondering if I could have both kilostream and broadband connected to the back of my 2600 and have different services going over the two connections (eg voice over kilostream and IT over broadband)? And if so, maybe I could have failover from one to another? Can I do this, and if so, any ideas how?
    I don't know if it helps, but we normally terminate our broadband IPSEC VPNs on our WatchGuard firewall, although we do also have a Microsoft ISA firewall that we could use instead.
    Any help you are able to offer would be very gratefully received.
    Regards
    Eric

    At the moment we use Cisco 2600 routers with 256k BT kilostream connections to our stations, to provide IT and Cisco VOIP. The kilostream connections cost about ?5k/station/year.
    We want to stream video for the IT, but the kilostream isn't up to it. We also have BT broadband (20:1 contention), to the station, generally between 2-8M, which costs about ?500/station/year. We can do video over that fine.
    My questions are:-
    1) I'd like to get rid of the expensive kilostream and just use broadband. However, we have about 10-25 VOIP phones on each station, and we keep being told that broadband could not support that, the latency is too high, the reliability too low, that it needs QoS and you can't get that with this infrastructure etc etc. Can I use Cisco VOIP over broadband to 2600 routers, would QoS work and what about the quality/reliability? If it is possible, any hints as to how?
    2) As an alternative, I was wondering if I could have both kilostream and broadband connected to the back of my 2600 and have different services going over the two connections (eg voice over kilostream and IT over broadband)? And if so, maybe I could have failover from one to another? Can I do this, and if so, any ideas how?
    I don't know if it helps, but we normally terminate our broadband IPSEC VPNs on our WatchGuard firewall, although we do also have a Microsoft ISA firewall that we could use instead.
    Any help you are able to offer would be very gratefully received.
    Regards
    Eric

  • Video over ip design guideline

    Hi
    I want some guideline for designing video over ip setup.
    We have central monitoring system and multiple sites connected to central site.
    Now sites will have cameras and alrm system.
    Live videos will be recorded at sites.
    Now this is BOD application where we will pass video may be voice
    and also data.
    Central site may take archived data from sites at any time.
    Now in such scenario what solution is best and cost-effective?
    Whether DMVPN or MPLS/VPN or any other solution as we
    require bod and not continuous dedicated bandwidth?
    Pls let us know any document having such type of solutions.
    Regards
    Vaishali

    What "flavor" of video over IP are you looking for?
    If it's streaming video, then the Cisco IPTV would do the trick. There are four basic models: A control server, a broadcast server, an archive server, and a "starter kit" that can do all of the above, but with limited resources.
    Do a site search for IPTV to get the docs & application info.
    If you were looking for video conferencing, there are also several possibilities.
    So, streaming video or conferencing? What's the application ?
    Scott

  • Can not view video over the Internet on WVC80N

    I set up the web cam, set up the port forward etc so now I am able to:
       1. view/change web cam settings inside my home network.
       2. view video inside my home network.
       3. view/change web cam settings over the Internet.
    But I am not able to view video over Internet. Every time I did so (using IE browser), after clicking the view video button, I got an error : There are too many user connections or the device is busy, please try again latter.
    Anyone has a fix on this? I set up port forwarding on port 1024 (that's how I can chage settings over Internet).
    I spent 2 hours on the phone with Linksys tech support but they could not find the reason.
    Thanks,
    Sam

    Who is your ISP? How you are trying to access your Camera from the remote location? Along with Port 1024 you need to do port forwarding for port 80 on your router for the Cameras IP address. As WVC80N works on your HTTP Port.
    To access your camera from the Remote location, you need to use http://wan ip:80.

  • Jabber Client for Windows video not working with ManyCam

    Hi everyone.  We've been kicking around the Cisco Jabber client and I've noticed a small issue when it comes to video.  I use a software package called ManyCam (http://www.manycam.com/) which creates a web cam that allows me to put effects on my actual web cam's video feeds.  Primarily I use it when I'm in a remote office and have a video stream back to the main office I can put effects on the screen like "On a conference call" and such so people won't get upset when they approach me and I fail to respond to them.  I use it with other applications just fine but with Cisco Jabber (v9.2.0 Build 496) when I attempt to set it the ManyCam camera as the video source in the video configuration of Cisco Jabber the preview doesn't appear.  As well when I connect to another Cisco Jabber user they do not see my video stream.
    Anyone else notice this?  Or does anyone else have a link to some similar software that will give me equivalent functionality to ManyCam that works with Cisco Jabber?
    Thanks!

    Only if they are on a Mac using iChat(gmail account).
    Have a look at http://mail.google.com/videochat

  • Azure Site to Site VPN with Cisco ASA 5505

    I have got Cisco ASA 5505 device (version 9.0(2)). And i cannot connect S2S with azure (azure network alway in "connecting" state). In my cisco log:
    IP = 104.40.182.93, Keep-alives configured on but peer does not support keep-alives (type = None)
    Group = 104.40.182.93, IP = 104.40.182.93, QM FSM error (P2 struct &0xcaaa2a38, mess id 0x1)!
    Group = 104.40.182.93, IP = 104.40.182.93, Removing peer from correlator table failed, no match!
    Group = 104.40.182.93, IP = 104.40.182.93,Overriding Initiator's IPSec rekeying duration from 102400000 to 4608000 Kbs
    Group = 104.40.182.93, IP = 104.40.182.93, PHASE 1 COMPLETED
    I have done all cisco s2s congiguration over standard wizard cos seems your script for 8.x version of asa only?
    (Does azure support 9.x version of asa?)
    How can i fix it?

    Hi,
    As of now, we do not have any scripts for Cisco ASA 9x series.
    Thank you for your interest in Windows Azure. The Dynamic routing is not supported for the Cisco ASA family of devices.
    Unfortunately, a dynamic routing VPN gateway is required for Multi-Site VPN, VNet to VNet, and Point-to-Site.
    However, you should be able to setup a site-to-site VPN with Cisco ASA 5505 series security appliance as
    demonstrated in this blog:
    Step-By-Step: Create a Site-to-Site VPN between your network and Azure
    http://blogs.technet.com/b/canitpro/archive/2013/10/09/step-by-step-create-a-site-to-site-vpn-between-your-network-and-azure.aspx
    You can refer to this article for Cisco ASA templates for Static routing:
    http://msdn.microsoft.com/en-us/library/azure/dn133793.aspx
    Did you download the VPN configuration file from the dashboard and copy the content of the configuration
    file to the Command Line Interface of the Cisco ASDM application? It seems that there is no specified IP address in the access list part and maybe that is why the states message appeared.
    According to the
    Cisco ASA template, it should be similar to this:
    access-list <RP_AccessList>
    extended permit ip object-group
    <RP_OnPremiseNetwork> object-group <RP_AzureNetwork>
    nat (inside,outside) source static <RP_OnPremiseNetwork>
    <RP_OnPremiseNetwork> destination static <RP_AzureNetwork>
    <RP_AzureNetwork>
    Based on my experience, to establish
    IPSEC tunnel, you need to allow the ESP protocol and UDP Port 500. Please make sure that the
    VPN device cannot be located behind a NAT. Besides, since Cisco ASA templates are not
    compatible for dynamic routing, please make sure that you chose the static routing.
    Since you configure the VPN device yourself, it's important that you would be familiar with the device and its configuration settings.
    Hope this helps you.
    Girish Prajwal

  • Web Filtering on a Cisco 891 Router

    I am looking for a new method of filtering our internet. We currently have 1200+ sites utilizing cisco 891 and 891w routers for their external connection to the internet. Our current method of filtering them is utilizing whitelisting for http(80) traffic and a acl with an ip list for https(443) traffic. We also have specific https websites proxied that utilize akamia servers. This method is very difficult to maintain on our large scale. Is there a better method of doing this on the router to filter both http and https traffic via URL that does not invlove allowing all 443 or 80 traffic out?

    Anthony,
    Yes it does https inspection and the portal also block based on categories (Social Networking, Gamblin; to tell a few samples), IP address and domain name.
    Get in touch with your Cisco Account Team or Cisco Partner/Reseller and get an evalution.
    HTH
    Luis Silva
    "If you need PDI (Planning, Design, Implement) assistance feel free to reach us"
    http://www.cisco.com/web/partners/tools/pdihd.html

Maybe you are looking for

  • 30" Cinema Display P/S Extension Cable

    Has anyone here heard of an extension cable to allow the power supply ( 'brick' ) to be located anywhere else besides the end of the cable that comes out of the back of the Display itself? It has a magical connector that nobody I've talked to seems t

  • How can I avoid using rollback segment for batch updates.

    I am currently trying to avoid associating a large amount of space for rollback segment as this gets filled up only during the nightly batch updates. All that space will never be used during the day. Hence want to know if there is any way of avoiding

  • IPod 30 Gb connection problem

    Hi, I've buy a new 30 Gb iPod and now I'm trying to connect it to my desktop pc (windows xp service pack 2) without success! I've installed iTunes and iPod software then rebooted and then connected the usb cable to my pc and... nothing appens, the be

  • Downloading data containing different line types

    Hi, Any help would be greatly appreciated. I have a requirement of downloading customer statement (open line items) on the presentation server or application server (user specified). The format of data is as follows: Company code & address Customer c

  • How to Synchronize cube measures with relational fact tables?

    Dear all, I built a simple analysis cube on Oracle 10g R2 using AWM. The problem is when I change in the column associated with a base measure of my cube and then do cube or measure maintenance using the maintenance wizard of AWM, the measure value d