Archive for the ‘Informational’ Category

Cisco SAF and CCD

Informational, Tips & Tricks | Posted by admin
Feb 13 2012

I decided to take a stab at Cisco’s Call Control Discovery (CCD) which is the first application to utilize their Service Advertisement Framework (SAF).
I was fairly unhappy with the lack of information available on the web to this end. So I’m spending some time writing up what I learned.
I suggest reading the Cisco whitepapers on SAF and CCD deployment. I’m going to assume you have a basic knowledge of what the technology does.

I was looking for a way to use CCD to simplify a CUCM deployment with Tail-End Hop Off (TEHO).
What I found out was that, in the end, there was no real configuration savings. I just ended up defining the patterns on the router instead of the CUCM.

Hopefully Cisco will, in future versions, provide additional options that will increase the flexibility of this technology.

So, to get started we need to build our SAF network. A couple of things to keep in mind:

  • SAF requires IOS 15.0
  • If your interconnecting network does not support SAF, you will need loopback interfaces on your SAF routers.
  • SAF is an extension of EIGRP, but you do not need to run EIGRP as your routing protocol, it will work even if you use static routing since it operates in a separate instance.

 

Enabling SAF on routers


router eigrp saf
service-family ipv4 autonomous-system 10
topology base
neighbor 10.0.0.10 Loopback 10 remote 10

Take not that the eigrp instance does not have to be named saf and the AS does not have to be 10.  But keep track of these values, whatever you make them.

To connect to a CUCM system, you will also need to configure an external client login on the system.  This is fairly straightforward.


service-family external-client listen ipv4 5050
external-client CUCM
username safuser
password safpassword123
keepalive 360000

Again, CUCM was chosen at random, you can make it whatever you want, just keep track of the value.  You should note that the external client password must be at least 14 characters long.

You will also need to attach it to the eigrp instance.


router eigrp saf
service-family ipv4 autonomous-system 10
topology base
external-client CUCM

So with that our SAF networking is complete.  There are some other considerations if your network has point-to-multipoint connections in it.  Please reference the Cisco whitepapers for this as I am not going into detail on it.

Now for the CCD portion.  Remember,if you’re running 15.1 or higher to either disable the toll-fraud feature, or configure it properly, otherwise calls will fail.


voice service voip
no ip address trusted authenticate

Now for the CCD portion… Really this time.

First we need to enable the CCD service on the router.

voice service saf

Then we create a trunk profile.  This tells other devices what protocol to contact us with.

profile trunk-route 1
session protocol sip interface Loopback 10 transport udp port 5060

Next we need to define the “routes” to advertise.

profile dn-block 1
pattern 1 type global 1206XXXXXXX

Still pretty straightforward right?

Next step is to build a callcontrol profile to tie them all together.  Note that the numbers next to dn-block and trunk-route match the ones defined above.

profile callcontrol 1
dn-service
trunk-route 1
dn-block 1

Finally we need to associate the callcontrol profile(s) to our SAF instance as a channel.  Here’swhere we need to remember what we called our EIGRP instance and what AS we used.  I know this may seem pretty obvious, but it’s not entirely clear in Cisco’s whitepapers.

channel 1 vrouter saf asystem 10
subscribe callcontrol wildcarded
publish callcontrol 1

The subscribe line tells the router to listen to all (wildcarded) advertisements.  You can set this to only listen to specific ones.

The publish line advertisesour callcontrol profile to the SAF network.

With all that done, we can go to the CUCM.

First setup the SAF Security Profile

Advanced Features → SAF → SAF Security Profile

Create a new profile, give it a name.  Enter the username and password we used in the IOS external-client config above.

Save it.

Advanced Features → SAF → SAF Forwarder

Create a new Forwarder.  Give it a name.  Again use the external client config parameters for Client Label, SAF Forwarder Address, SAF Forwarder Port.  In the above example, this would be: CUCM, 10.0.0.5 (Loopback Addr), 5050.

Select the security profile you just created.  Save it.

Now go to : Call Routing → Call Control Discovery → Hosted DN Group

Create a group, give it a name, save it.

Next : Call Routing → Call Control Discovery → Hosted DN Pattern

This is our internal extension “route”.  Add your pattern as you expect it from the PSTN.  (i.e. 1XXX).  Assign it to your Hosted DN Group.  Save it.

Do this for all your internal DID blocks.

Whew!  Almost Done!

Go to Device → Trunk.

Create a new trunk.

Trunk Type: SIP

Service Type : Call Control Discovery

Configure this trunk as you would any other gateway.  Save it.

Now go to : Call Routing → Call Control Discovery → Advertising Service

Give it a name, select your SIP trunk (or H323) and the Hosted DN group you configured.

Save it.

Now we’ve advertised our routes into the SAF network, we just need to receive routes now.

Call Routing → Call Control Discovery →Requesting Service

Set the name and move the trunk from the Available box to the Selected box.

Save it.

All done!

You won’t see any of the learned routes in the CUCM.  But you can verify that it’s working by using RTMT.

There’s a lot more that can be done, but this is the basic configuration to get you going.  On most dial-plans you will want to make sure the patterns are placed into a certain partition, or take advantage of the AAR/PSTN failover features.

Good luck in your endeavors.

 

 

Tags: , ,
No Comments »

SIP Early Media in Communications Manager 8

Informational | Posted by admin
Feb 23 2011

I posted a short while back on this topic for older versions of Communications Manager.  Leave it to Cisco to move things around and make me do it again.  :)

So here’s where you find the option :

Go to Device -> Device Settings -> SIP Profile.  Select the profile you want to edit (If you use the default profile, you will need to make a copy of it).

Scroll down to the bottom section (Trunk Specific Configuration) and find the SIP Rel1XX Options parameter.  Change it to Send PRACK if 1xx Contains SDP.

As I mentioned in the other post, this parameter tells the Communications Manager to send ACK packets back in response to 100 series SIP message received that contains an SDP section.

Press the Save button and you’re done.

If you had to copy the SIP Profile, you will now need to apply the profile to your SIP trunk, then reset it to apply the changes.

Remember! Resetting the SIP Trunk will DROP all active calls.

Good luck!

Tags: , ,
No Comments »

Forwarding calls back across a SIP trunk between CUCM and CME

Informational, Tips & Tricks | Posted by admin
Aug 25 2010

So lets say you have a Cisco Unified Communications Manager (CUCM) system with Unity or Unity Connection. You also have a remote site running on Callmanager Express (CME) with a SIP trunk to the CUCM as the primary gateway. To keep costs down, you decided to use your centralized unity system as the VM provider rather than purchase the Unity Express module for the router.
Here’s the problem: When you call an extension on the CME box and it rolls to voicemail, you get a fast busy.

If you do a debug, you will see the following messages:

Router# debug ccsip messages


SIP/2.0 302 Moved Temporarily
Via: SIP/2.0/UDP 192.168.1.10:5060;branch=4gsi4lsi84o57osh7j6ps
From: <sip:1000@192.168.1.10>;tag=91837ae4-cf98-d1ae-7f23-95fe870ab193-d4875345
To: <sip:5000@192.168.2.1>;tag=92FE84D7-CB6
Date: Wed, 25 Aug 2010 22:00:00 GMT
Call-ID: fe1edf80-c7519084-a9be7-5ff1bac@192.168.1.10
CSeq: 101 INVITE
Allow-Events: telephone-event
Server: Cisco-SIPGateway/IOS-12.x
Content-Length: 0

This SIP message tells the CUCM that the number has been forwarded. By default, the CUCM will not know what to do with this and so will return a reorder tone.

This is an easy problem to fix, though probably hard to describe in a few words.
You could disable this SIP feature in IOS, but that would route all voice traffic for those users (to voicemail) out to the remote site and then back to the VM server. It works if your system doesn’t support this feature… but it’s not the best solution.

Instead we can just configure CUCM to reroute calls when it receives these messages.

Start by adding a new SIP profile if you use the Standard SIP Profile.
Go to : Device -> Device Settings -> SIP Profile
Click on Find and select the Standard SIP Profile
Click the Copy button to create a copy, then give the copy a new name. Something like Custom SIP Profile or Enhanced SIP Profile is fine or use your own naming standard.
Then before you save it, check the box that says Redirect by Application… this allows the CUCM system to process redirect messages on SIP devices using this profile.
Then click Save.

Next we go configure our SIP Trunk
Device -> Trunk
Click the Find button and click on your Trunk name.
Scroll all the way down. The second to the last line is your SIP profile. Change this to the custom profile we just created.
Lastly we need to tell the trunk where to reroute calls to… look a few lines farther up and you’ll see a Rerouting Calling Search Space field. Set that to your outgoing CSS. (Or a CSS that provides access to your VM or other required services)
Save the changes and Reset the trunk.

That’s it! The CUCM system will now process the SIP redirection messages and reroute the caller accordingly.

Tags: , , , ,
4 Comments »

VMWare ESX and Openfiler – 95% shutdown

Informational, Tips & Tricks | Posted by admin
Jul 30 2010

Well this one certainly caused me some heartache. I’m posting it here in hopes that it helps someone else.
I don’t remember when exactly it started or why, but I noticed that when I tried to shut down my virtual machines, they would lock up. I could not tell what was wrong with them and if I tried to use VM -> Power -> Off they would get to 95% and then lock up.
I would end up having to reboot the VMWare server to get them back online.
While doing some VM upgrading, this was happening a lot. It got frustrating enough for me to start seriously trying to figure out the problem.
Reviewing the VMWare server logs showed a lot of “Sync CR” messages in the log. These indicate reservation conflicts for SCSI control in VMWare.
It seemed that for some reason, my problem was not VMWare, but the iSCSI initiator on Openfiler.
For me this issue was resolved by restarting the iSCSI initiator service like this:
/etc/init.d/open-iscsi restart

This should be a last resort though, since, without properly shutting down your VMs, it WILL seriously anger the VMWare server and probably screw up any virtual machines running on the iSCSI drive.

Tags: , ,
No Comments »

IOS DHCP Server – Part 2 (Advanced Configuration)

Informational | Posted by admin
Apr 14 2010

In Part 1 we covered the basic configuration of the DHCP. Now we’ll delve into some of the more advanced configuration aspects.

Inherited Settings

When a DHCPDISCOVER message is received by the router, Cisco IOS matches it against the list of DHCP pools and returns the DHCP options based on which pools matched the subnet the request came from.
Did you catch that? I said pools… plural… if the pools overlap, it is possible for more than one DHCP pool to match a DHCPDISCOVER message. In this case the options are cascaded down through the matching pools with the more specific pool taking priority. Here’s an example:
ip dhcp pool GLOBAL
 network 192.168.0.0 /22
 dns-server 192.168.1.10 192.168.1.11
ip dhcp pool DATA
 network 192.168.1.0 /24
 default-router 192.168.1.1
ip dhcp pool VOICE
 network 192.168.2.0 /24
 default-router 192.168.2.1
dns-server 192.168.2.10
Assuming we get a DHCPDISCOVER request on the DATA VLAN, the request will be matched against the pools above. As you can see, the 192.168.1.0 network will match both the GLOBAL and the DATA pools. Since none of the options overlap, the DHCPOFFER will contain an IP address on the 192.168.1.0/24 network with 192.168.1.1 as the gateway router and dns servers of 192.168.1.10 and 192.168.1.11.
However if the DHCPDISCOVER request was received on the VOICE VLAN, the result would be different. The DHCPOFFER would still contain an address on the 192.168.2.0/24 network with it’s proper gateway. However, the more specific matched pool (VOICE) would override the DNS server settings in GLOBAL. So the DHCPOFFER would only contain one DNS server (192.168.2.10).

Manual Host Bindings

What if we always want a specific host to get a certain IP address?
We can create a manual binding for that host like this :
ip dhcp pool COMPUTER_NAME
 hardware-address 0012.3456.789A
 host 192.168.1.100 mask 255.255.255.0
 client-name COMPUTER_NAME

If you have a lot of these, it helps to minimize the configuration if you use inheritance as discussed above. The DHCP pool name does not have to match the computer name, I just find it helpful if it does.  Also, the client-name command is not required except where network devices learn their hostname via DHCP.
It should also be noted that Microsoft DHCP clients send a client identifier rather than the MAC address of their network card. The client identifier includes a media identification byte at the beginning of the value. The value for ethernet media is 1. Therefore the above DHCP pool configuration for a Microsoft Windows client would look like this
ip dhcp pool COMPUTER_NAME
 client-identifier 0100.1234.5678.9A
 host 192.168.1.100 mask 255.255.255.0
 client-name COMPUTER_NAME

See how the client-identifier command includes the media type for ethernet (01) followed by the device MAC address?
Both hardware-address and client-identifier can be configured at the same time.

Persistance

What happens when our router dies due to power failure or some other unfortunate event?  We would lose all of our precious DHCP bindings… ok maybe not that big a deal, they are dynamic and all…  But this can cause issues, especially on larger networks.  If there is no binding table, then the DHCP server will take longer as it tries to find an unused IP address.  In a densely populated network, it could take a long time before the server finally found an available IP address.  To cause the DHCP binding table to be stored in a more permanent location we can use the following commands.

ip dhcp database ftp://user:password@192.168.1.10/data-dhcp

This tells the system to store the DHCP binding table on an FTP server at 192.168.1.10 using the username ‘user’ and the password ‘password’. The name of the file will be data-dhcp.
By default, this file will only be updated every 5 minutes.  And will wait for up to 5 minutes for the FTP transaction to complete.  Both of these settings can be adjusted with optional parameters to the ip dhcp database command.

In the above example FTP was used as the transport protocol, but TFTP and RCP are supported as well.

Tags: ,
No Comments »

IOS DHCP Server – Part 1 (Basic DHCP)

Informational | Posted by admin
Apr 13 2010

An often overlooked, but very powerful tool in the Cisco IOS, the DHCP service provides a full DHCP implementation on your router. In this 3 part post, I’m going to cover the basics of simple DHCP services as well as advanced configuration.

To get started let’s do a quick review of DHCP functionality.

When a new host connects to the network, the first IP related action it takes (assuming DHCP here folks) is to request an address from the server. It does this by sending an unaddressed broadcast IP packet out to the network (DHCPDISCOVER). The packet still has the system’s MAC address attached to it, so the server knows which device is making the request. In most cases, the server (or servers) see this request and respond with an assigned IP address (DHCPOFFER).
At this point the DHCP client will choose one of the offers that it received and send out another broadcast (DHCPREQUEST) which notifies all DHCP servers that an offer has been accepted. Any offer that was not accepted is invalidated on the server. The server that sent the accepted offer will then send out an aknowledgement to the client (DHCPACK).

All DHCP packets are sent via UDP with a port number of 68 on the client and 67 on the server.

So, how do we setup a simple DHCP server on IOS?

ip dhcp pool MYNETWORK
 network 192.168.1.0 /24
The name of the DHCP pool can be whatever you want, you just need to make sure it’s unique.
And that’s it! Pretty worthless though without a default router or dns…
Let’s add that in
 default-router 192.168.1.1
 dns-server 192.168.1.10 192.168.1.11
At this point we have a fairly usable DHCP scope.
Lets say that we want to reserve the first 10 addresses in the scope for servers, routers, switches, etc.
We can do so like this
ip dhcp excluded-address 192.168.1.1 192.168.1.10
If you only wanted to exclude one address, you would enter the one address in twice like this
ip dhcp excluded-address 192.168.1.10 192.168.1.10
There are a few other commands that should be configured for basic DHCP. First is the domain name.
 domain-name mydomain.com
This command should be entered inside the ip dhcp pool block, so if you left dhcp pool configuration you’ll need to reenter that command.
This assigns a domain name to your clients. Usage of this domain name is application specific. One example would be for DNS queries though. If your software is only given a hostname it may assume that the fully qualified name of the host is host.(dhcp assigned domain)
The other command actually activates the DHCP server, without it the router will not respond to DHCP messages.
service dhcp
Some may argue that this is a default command… Most of the time you’d be correct, but I’ve worked on some devices where this is not the case. So remember to enter this command if for some unknown reason your router doesn’t appear to be accepting DHCP packets.

That about wraps it up for basic DHCP. I’ll be following up with two other posts for Advanced DHCP Settings and DHCP Tuning

Tags: ,
No Comments »

Inactive PC Port on Cisco 524SG Phones

Informational, Tips & Tricks | Posted by admin
Oct 20 2009

Some of the older UC520 systems were shipped with other firmware versions for the 521 and 524 phones.  It seems there are a number of feature upgrades with the newer firmwares.  One of which is the ability to enable the switch port on a 524SG model phone.

You should load at least 8.1.13 or higher firmware on the system.

Don’t forget to setup the tftp-server and load commands so that your phone updates.

Tags: , ,
No Comments »

SIP Early Media and ISDN in Communications Manager 6 and 7

Informational, Tips & Tricks | Posted by admin
Oct 16 2009

There are several ways to configure a gateway for use in Cisco’s Unified Communications Manager. MGCP, H.323, SIP. Each has it’s own benefits and drawbacks.
Here are some of the big issues for me :

  • Call Preservation – When network connectivity to the system goes down, it would be nice if all active calls didn’t drop
  • Centralized Management – Being able to configure everything from one place and not have to duplicate settings on a per device basis
  • Distributed Call Management – Calls routed optimally while maintaining a reasonably small configuration that can scale well

I know there are other issues here, but these were the important ones for me.  MGCP provides the centralized management, but not the other features.  Most importantly Call Preservation.  This is why I rarely use MGCP for VoIP deployments.

To configure a SIP gateway for a Cisco Unified Communications Manager there are two steps.

  1. Configure the Gateway
  2. Configure the Communications Manager

Configuring the Gateway

This part is fairly easy.  Here I’m assuming that you already have your PRI configured.
voice rtp send-recv
!
dial-peer voice 1000000 voip
incoming called-number .
dtmf-relay rtp-nte
!
dial-peer voice 9000100 pots
destination-pattern [2-9]......
no digit-strip
port 0/0/0:23
dial-peer voice 9000200 pots
destination-pattern 1[2-9]..[2-9]......
no digit-strip
port 0/0/0:23
You could have more dial-peers, but this is enough to get started.

Configuring the Communications Manager

Go to the Device -> Trunk menu.

Click on the Add New button

Select SIP Trunk as the type and click the Next button.

There are a few fields here that need to have information in them:

  • Device Name – This can be anything, but should be descriptive
  • Device Pool – Appropriate device pool for your deployment
  • Location – Again use the appropriate location in your system
  • SIP Trunk Security Profile – Default should be fine unless you have some special requirements
  • SIP Profile – Again, Default should be fine for most users.

There are two other settings here to be aware of:

Media Termination Point Required

This should be unchecked.  While some SIP gateways may require this, it’s my experience that it causes more headaches than anything else.  It also causes all outbound calls to consume an MTP resource or Transcoder in some configurations.

DTMF Signaling Method

You might be wondering why DTMF signaling makes any difference… here’s why:  On a Cisco Unified Communications Manager even if you have MTP requirements disabled, if the DTMF relay types do not match (or are not compatible) the trunk will dynamically allocate an MTP resource which will act as a DTMF translator converting one method to another.  For maximum compatibility use : RFC 2833. You’ll see that the gateway configuration above uses RFC 2833 for it’s DTMF relay with the following command : dtmf-relay rtp-nte

The Problem with this is…

Now that our system is configured, we can make calls out.  You’ll find that everything seems to work fine.  There are a few cases however where it will not.  An example of this is when the telco sends an announcement message prior to connecting the call.  A few common uses of this method are prompts for account codes, incorrect dialing messages, etc.

SIP Trunks on Cisco’s Communications Managers create ringback locally and wait for the ISDN Connect message before actually connecting the IP media stream.  So if you receive a message from your telco before their switch sends you the Connect message, you will only continue to hear ringback on the phone until the telco terminates the connection.

An easy way to fix this is to require that all calls use a Media Termination Point.  I pointed out above that I don’t recommend this.  It drives cost up, makes troubleshooting more difficult and can cause issues with faxing.

The better way to fix this is simple, but I’m going to go into a little background explaining the why.

Whenever your telco sends an announcement message, they will flag the Progress Indicator of the Q.931 message with an 8 (Usually.  Some telcos may do this a little differently)  Your Cisco gateway will take this indicator and generate a SIP 183 Session Progress message which contains an SDP with connection parameters.  This tells the Communications Manager that there is possibly some in-band data that the user may be interested in.  The problem is that the Communications Manager will ignore this and continue to play the ringback tone instead of letting you hear the message.

To allow the Communications Manager to react to the 183 messages go into System -> Service Parameters, select your server then select the CallManager service.  Scroll down and find the Clusterwide Parameters (Device – SIP) section.  Find the SIP Rel1XX Enabled parameter and set it to True (Or use one of the Send PRACK options in 7.x).  This parameter tells the Communications Manager to send ACK packets back in response to any 100 series SIP message received.  The IOS command above, voice rtp send-recv, is used to connect the media path in both directions instead of just a single direction.

That’s it!  Press the Save button and you’re done.  Now when the system is signalled from the ISDN network it will properly cut through the media path and your users will hear any possible announcement messages.

Tags: , ,
No Comments »

SIP and MGCP – Friends or Foes

Informational, Troubleshooting | Posted by admin
Jun 25 2009

Here’s the scenario:  We have a Cisco Unified Communications Manager 6.1, an MGCP controlled VG224, a SIP trunk to the PSTN and hardware transcoders.  We place the SIP trunk and VG224 into different regions so that they should use the g.729 codec.  Transcoders go into a region that will always use g.711.

Symptom : Calls show up on the SIP gateway as g.711, not g.729

This is because the system is using transcoders to complete the call.  The big question is ‘Why?’.  Both devices are natively capable of supporting g.729, but they insist on using a transcoder.  The transcoder sits in a g.711 only region, so both sides of the gateway run g.711.

Here’s the reason why : When calls connect to a SIP trunk in Cisco’s Communications Manager, the system will dynamically allocate a Media Termination Point (MTP) if the two endpoints are configured with incompatible DTMF signalling types.  Since transcoders can be used as MTPs, a transcoding session is invoked.

In many cases VG224s are used to handle Fax calls.  For those who don’t know… Fax machines and transcoders don’t mix.  But even if there are no fax machines in the mix, at remote locations this issue can cause overutilization of bandwidth.

The solution is simple, just make sure that all of your endpoints use compatible DTMF relay methods.

For example in MGCP
mgcp dtmf-relay voip codec all mode nte-ca
is compatible with this command in SIP (RFC-2833)
dtmf-relay rtp-nte

Tags: , ,
No Comments »

Mean Opinion Score (MOS)

Informational | Posted by admin
Jun 23 2009

I’ve been talking about MOS scores recently and answering a lot of questions.  So I thought it might be worth a quick note.  I’ll write a more detailed article about IP voice quality a little later.

MOS Scores are used to quantify the quality of a phone conversation.  In the past this was based on the “Mean Opinion” of several call testers.  On modern IP telephony systems, there are mathematical alogrithms that do this for us.  They take into account the various inconsistencies that plague VoIP calls: loss, jitter and latency.

Those algorithms then give us a number to rate the results.  The number is from 1 to 5.  5 being a theoretical maximum.  I’m not aware of any system that claims 5.0 MOS.

MOS Score

Quality

Example

5.0

Perfect Audio

Face to face conversation

4.4

Maximum digital*

Crystal clear phone call

4.0

Very good

Normal phone call

3.8

Good

Average cell phone call

3.5

Minimum for Faxing

A few skips, but otherwise okay

3.0

Minimum phone call

A few missed words, but otherwise okay

2.0

Poor but usable

Callers need to repeat messages often

1.0

Very Poor quality

Zombies have taken over the planet and this is the only way to communicate with other outposts.  It sucks but it’s all we got.

Tags:
No Comments »