We use Cisco 7920 & 7921 phones, but the vlan does not go through Clean Access.
We are also trying some Aruba wireless equipment with a built-in firewall. Our firewall role has the following open for the phones: - skinny (sccp) TCP 2000 - dhcp UDP 67 & 68 - tftp UDP 69 - icmp - http TCP 80 Bruce Osborne Liberty University From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of William Blake Sent: Thursday, September 18, 2008 1:09 PM To: [email protected] Subject: Re: [CLEANACCESS] Phone role Cisco voip uses cdp to detect them and allow them in, no port filters needed. William Blake Network Architecture Abercrombie & Fitch 614.946.4131 614.283.7053 ________________________________ From: David Maas [EMAIL PROTECTED] Sent: 09/18/2008 12:48 PM AST To: [email protected] Subject: Re: Phone role We have all our Cisco VOIP phones in the filtered (lists). We were told by Cisco this was best practice. David Maas ________________________________ From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Osborne, Bruce W. (NS) Sent: Thursday, September 18, 2008 12:27 PM To: [email protected] Subject: Re: Phone role It varies among brands & protocols used. Can you be more specific, please? Bruce Osborne Liberty University From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Branden Kirk Sent: Thursday, September 18, 2008 12:12 PM To: [email protected] Subject: [CLEANACCESS] Phone role I tried searching through the archives and haven’t found the information I’m looking for. I’m wanting to create a role for VoIP phones on our Resnet. I’m looking for a fairly comprehensive list of TCP/IP ports that need to be allowed for voice services to work. If this isn’t the best approach and your institution is doing something else, could you also chime in and let me know what that approach is? Thanks. ==================== Branden Kirk Biola University Network Admin (562)944-0351 x5032
