![]() MGCP is a protocol that is used to control a number of media gateways that are in turn used to control different call control elements within the network called call agents or media gateway controllers. Media Gateway Control Protocol (MGCP) Inspection H.225, H.245, and H.323 RAS sessions can be monitored on the ASA as well by using the show h225, show h245, and show h323-ras commands, respectively. H.323 inspection can also be further configured to support additional inspection control by following the familiar process of creating class and inspection (policy) maps and applying them either globally (overriding the default H.323 inspection) or to a specific interface. If the ASA detects that additional ports are being requested as part of normal protocol operations, it (the ASA) will allow the communications and enable inspection on those ports as well. What the ASA does when these are enabled is listen to communications on both the H.225 (TCP 1720) and RAS (UDP 1718, 1719) communications ports. According to the ASA documentation, H.323 inspection (both H.225 and RAS) is enabled by default as part of the default inspection rules keep this is mind when configuring ASA traffic inspection. While H.323 has been around for a while, it is still used in many deployments as a primary and secondary voice and video network protocol. While this article is on the inspection capabilities of the ASA, keep in mind that these inspections will not even be allowed to happen if the ASA rules (ACL) don't allow the traffic in the first place because they are evaluated before inspections take place. This article takes a look at some of the inspection methods that are provided within the Cisco Adaptive Security Appliance (ASA) line and how they are used to improve the functionality of these technologies even when security is a high priority on the network. With many modern data networks being used for not only data communications but also voice and video traffic, it is very important that the security appliances that are installed have an awareness of these types of protocols and can easily be configured to support both simple and complex voice and video configurations. CCNA Routing and Switching 200-120 Network Simulator
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |