Soldato
- Joined
- 17 Oct 2002
- Posts
- 3,941
- Location
- West Midlands
Greetings if anyone could help me decide how best to go about the following it would be appreciated.
Im currently designing an MPLS deployment for a customer wishing to run voice, video and data on an MPLS network, they have 13 sites and 1 primary site as depicted in the diagram.
We shall be using SIP for incoming and outgoing voice plus an ISDN 30 for backup aswell as SRST at remote sites with redundant PSTN links.
The primary site will be running Call Manager, now im looking at having both an ISR and an ASA at the primary site for security sake and for terminating traffic on different devices but cant make up my mind whether it would function and whether i should have just the ASA the ISR or both.
My thinking is that if i run both, the router would have to sit on edge terminating the SIP Trunks and the firewall behind but
A: How to Terminate SIP Connections on the router then redirect them through the firewall
B: how to best make use of both products is keeping me awake at night!
Option B
The second method would be to put the router on the inside of the firewall and just have the firewall inspecting inbound/outbound traffic whilst terminating the SIP Trunks and VPNs on the ISR. This would be possible as the line into the primary site will be a 10mbit Ethernet connection.
Any recommendations welcome!
Im currently designing an MPLS deployment for a customer wishing to run voice, video and data on an MPLS network, they have 13 sites and 1 primary site as depicted in the diagram.
We shall be using SIP for incoming and outgoing voice plus an ISDN 30 for backup aswell as SRST at remote sites with redundant PSTN links.
The primary site will be running Call Manager, now im looking at having both an ISR and an ASA at the primary site for security sake and for terminating traffic on different devices but cant make up my mind whether it would function and whether i should have just the ASA the ISR or both.
My thinking is that if i run both, the router would have to sit on edge terminating the SIP Trunks and the firewall behind but
A: How to Terminate SIP Connections on the router then redirect them through the firewall
B: how to best make use of both products is keeping me awake at night!
Option B
The second method would be to put the router on the inside of the firewall and just have the firewall inspecting inbound/outbound traffic whilst terminating the SIP Trunks and VPNs on the ISR. This would be possible as the line into the primary site will be a 10mbit Ethernet connection.
Any recommendations welcome!
)