Guest

Preview Tool

Cisco Bug: CSCuq34241 - B2BUA Encrypted with Static NAT may result B2BUA media packet physically

Last Modified

Dec 18, 2017

Products (3)

  • Cisco TelePresence Video Communication Server (VCS)
  • Cisco TelePresence Video Communication Server Model
  • Cisco Expressway

Known Affected Releases

X8.2 X8.2.1

Description (partial)

Symptom:
Topology :
Endpoint(i.e. public endpoint behind ADSL NAT registered to VCS-E)--[FW (External-to-DMZ)]--VCS-E--[FW (DMZ-to-External)]--Endpoint

The problem with media packet flow after the VCSE receives RTP packets from the far end endpoint.

The RTP packets are also sent over B2BUA (src IP : DMZ and dest IP : NAT'ed IP ) which is causing the firewall to report DOS as packets are coming from the same physical interface as source and destination . This may probably causing the firewall to drop these RTP packets.

Conditions:
The call come from external network and out to external network as call destination while VCS-Expressway configured with static NAT and enable B2BUA (i.e. forced encrypted media)
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.