Download
Share
Print this page
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Conference System
  5. BE6000
  6. Design manual

Cisco BE6000 Design Manual

Collaboration edge
Hide thumbs Also See for BE6000:

Advertisement

Quick Links

Download this manual See also: Design Manual
Collaboration Edge
Using Cisco BE6000
Cisco Validated Design Guide
August 2016
© 2016 Cisco Systems, Inc. All rights reserved.

Advertisement

loading

Related Manuals for Cisco BE6000

Summary of Contents for Cisco BE6000

  • Page 1 Collaboration Edge Using Cisco BE6000 Cisco Validated Design Guide August 2016 © 2016 Cisco Systems, Inc. All rights reserved.

  • Page 2: Table Of Contents

    Configure CUCM for Expressway ...................... 27 Deploy Mobile and Remote Access ....................30 Deploy B2B Collaboration ........................42 Section 2: Deploy Cisco Unified Border Element (CUBE) ..............56 Install and Configure CUBE ....................... 56 Appendix A: Product List ........................62...

  • Page 3: Preface

    Contents Deploy CUBE Preface Cisco Validated Designs (CVDs) provide the foundation for systems design based on common use cases or current engineering system priorities. They incorporate a broad set of technologies, features, and applications to address customer needs. Cisco engineers...

  • Page 4: Proficiency

    3 years in designing, installing, and troubleshooting voice and unified communications applications, devices, and networks. Comments and Questions If you would like to comment on a guide or ask questions, please email: collab-mm-cvd@external.cisco.com. Disclaimer The IP address scheme used in this document is for representational purposes only. PAGE 4...

  • Page 5: Introduction

    In addition, teleworkers can use their Cisco TelePresence devices without a VPN, making collaboration at home as easy as in the office. Cisco Expressway makes collaboration as easy outside the enterprise as it is inside by simplifying the end-user experience. Using secure mobile access based on Transport Layer...

  • Page 6: Design Overview

    Cisco Preferred Architectures provide recommended deployment models for specific market segments based on common use cases. They incorporate a subset of products from the Cisco Collaboration portfolio that is best suited for the targeted market segment and defined use cases. These deployment models are prescriptive, out-of-the-box, and built to scale with an organization as its business needs change.This...

  • Page 7: Solution Details

    Deploy MRA and B2B Collaboration Contents Deploy CUBE Solution Details This Collaboration Edge Using Cisco BE6000 Technology Design Guide includes the following components: Cisco Unified Communications Manager (CUCM), for call control and SIP endpoint registrations  Cisco Unified Communications Manager Instant Messaging & Presence for Jabber Clients ...

  • Page 8: Cisco Unified Communications Manager (Cisco Unified Cm)

    SIP as signaling protocol for the endpoints. Cisco Video and TelePresence Endpoints Cisco video endpoints provide a wide range of features, functionality, and user experiences. Because endpoints range from desktop video phones and softclients to multiple-screen immersive TelePresence endpoints, an organization can deploy the right variety of endpoints to meet users’...

  • Page 9: Cisco Expressway-E And Expressway-C

    1 The DX series will be running the CE software. Cisco Expressway-E and Expressway-C Cisco Expressway Series is a firewall traversal solution that enables mobile and remote access to CUCM and other Cisco Collaboration Applications . The Expressway Mobile and Remote Access solution is complelementary to Cisco’s Anyconnect, providing organizations an alternative to VPN for remote workers...

  • Page 10: Cisco Unified Border Element (Cube)

    DMZ interface. Cisco Expressway-E is connected to the DMZ interface of Cisco ASA. Expressway-C and other collaboration components are on the inside of the Cisco ASA...

  • Page 11: Dial Plan

    Expressway-E is static-NATed to a public IP. All communication to the Expressway-E is based on the NATed IP. This means that Cisco ASA allows traffic from inside to reach the DMZ by using the NATed IP. This is also known as NAT reflection.

  • Page 12: Deployment Details

    Section1: Deploy MRA & B2B Collaboration Core Tasks Before beginning service-specific configuraiton, complete the following tasks: Installing Cisco Expressway-C and Cisco Expressway-E Configuring CUCM for Expressway Mobile and Remote access Configuration For Mobile and Remote access-specific configuration, complete the following tasks:...

  • Page 13: Pre-Deployment Checklists And Tasks

    The following tables provide you with a place to capture all the information you may need during the configuration of Cisco Expressway related services. Each table is comprised of the information items needed, references the example values used in this CVD, and provides a column into which you may enter your own particular site-specific values in an easy-reference format.
  • Page 14 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Table 5. Expressway-E Network Configuration Item CVD Configuration Site-specific configuration Expressway E Expressway E IPV4 LAN 1 address 10.126.69.50 IPV4 LAN 1 subnet 255.255.255.0 IPV4 t gateway 10.126.69.49 System host name EXPc1...
  • Page 15 Deploy MRA and B2B Collaboration Contents Deploy CUBE DNS SRV Records Table 7. DNS SRV records (Inside DNS ) Item CVD Configuration Site-specific configuration Domain mmcvd.ciscolabs.com Service cisco-uds cisco-uds Protocol Priority Weight Port 8443 8443 Service cucm-pub.mmcvd.ciscolabs.com Table 8. DNS SRV records (Public DNS)
  • Page 16 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Firewall port requirements Table 9. Firewall ports to be opened outbound from Inside to DMZ Purpose Protocol Expressway-C (source) Expressway-E (listening) XMPP (IM and Presence) Ephemeral port 7400 SSH (HTTP/S tunnels) Ephemeral port...
  • Page 17 The Expressway certificates can be generated using the Certificate Sign Request (CSR) option available on both the Expressway-C and Expressway-E devices. After completing the Installing Cisco Telepresence Expressway C/E tasks below, the administrator can log into the expressway server via web interface and using the CSR utility can generate the certificates.
  • Page 18 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE IM & Presence chat node aliases ( Federated group chat) Unified CM phone security phone profile names Tech Tip Unified CM Registration domains – you can have FDDN’s seperated by commas if you want multiple domains.

  • Page 19: Core Tasks

    Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Core Tasks Install Cisco Expressway Repeat procedures 1 to 5 for Expressway-C and Expressway-E. Deploy OVA to host Configure the VM guest Obtain Licenses Apply licenses...
  • Page 20 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Browse, find the location of the .ova file, click Open, and then click Next. Step 4. On the OVF Template Details page, click Next. Step 5.
  • Page 21 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 8. On the Disk Format page, ensure that the default disk format of Thick Provision Lazy Zeroed is selected, and then click Next. Tech Tip Because the VM performance may degrade during the resizing of a partition, Thin Provision is not recommended.
  • Page 22 You will need to access Expressway-C and E in turn via a web browser to identify and record the Serial Number Step 2. Using the serial numbers and the license PAK provided, obtain your licenses via the licensing portal (www.cisco.com/go/license). This will provide your Release and Option keys for the next Procedure. PAGE 22...
  • Page 23 Deploy CUBE Procedure 4 Apply licenses Tech Tip To obtain licenses Refer Appendix 2 of the link - http://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/expressway/install_guide/Cisco- Expressway-Virtual-Machine-Install-Guide-X8-6.pdf Step 1. Navigate to Maintenance > Option keys, enter the provided release key, and then click Set release key. Step 2.
  • Page 24 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 2. Click Save. Step 3. Navigate to System > Time and using the Easy access configuration sheet enter the NTP server details: servers-10.106.170.130  PAGE 24...

  • Page 25: Cisco Expressway-E Specific Installation Tasks

    Deploy MRA and B2B Collaboration Contents Deploy CUBE Cisco Expressway-E specific installation tasks Configure static NAT Expressway-E sits in the DMZ network and is NATed to a publically routable IP. Once NAT is configured on the Expressway-E, all communication to and from Expressway-E will use the NATed IP.
  • Page 26 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Tech Tip *The static NAT IPv4 address needs to be a publicly routable IPv4 address. PAGE 26...

  • Page 27: Configure Cucm For Expressway

    Procedure 1 Configure region for video First, you log in to Cisco Unified Communications Manager Administration page and create a separate region for video traffic to allow more bandwidth for intra or inter region calls. Step 1.
  • Page 28 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 5. Enter the following: Maximum Session Bit Rate for Video Calls—32256  Step 6. Click Save. Step 7. Under Regions, select REG_Site01. Step 8. Enter the following: Maximum Session Bit Rate for Video Calls—32256 ...
  • Page 29 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Procedure 2 Configure device pool in CUCM for video and add the video region Step 1. Navigate to System > Device Pool and click Add New. Step 2.

  • Page 30: Deploy Mobile And Remote Access

    Click Save. Step 3. Navigate to Configuration > Domains and click New. Step 4. Enter the following values in the relevant fields: Domain name—mmcvd.cisco.com  SIP registrations and provisioning on Unified CM—On  IM and Presence services on Unified CM—On ...
  • Page 31 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 5. Click Create Domain. Procedure 2 Discover Unified CM and IM&P server on Expressway-C Step 1. Navigate to Configuration > Unified Communications > Unified CM Servers, and then click New.
  • Page 32 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Add Address. Next, you configure the IM&P server for remote access. Step 4. Navigate to Configuration > Unified Communications > IM and Presence servers, and then click New.
  • Page 33 Next, click Generate CSR. Additional Information  ◦ Key length ( in bits)-4096 ◦ Digest Algorthm -SHA256 ◦ Country- ◦ State or province - California ◦ Locality (town name)-San jose ◦ Organization (Company name)- Cisco ◦ Organizational unit- PAGE 33...
  • Page 34 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 2. Then Click Generate CSR. Once the certificate is generated, download the .PEM file, rename the file to the .cer format if required and get it signed by your private CA. Step 3.
  • Page 35 To generate a CSR, navigate to Maintenance > Security certificates > Server certificate, fill the below fields leaving other at default. Next, click Generate CSR. Under Alternative name  Unified CM registrations domains-mmcvd.cisco.com ◦ Additional Information  ◦ Key length ( in bits)-2046 ◦...
  • Page 36 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 2. Once the certificate request is generated via the Generate CSR, download the .PEM file to be sent for signing to the public CA. Step 3. Next, obtain your private root Certificate Authority (CA) certificates and public root CA certificates uesd to sign your Expressway-C and Expressway-E respectively.
  • Page 37 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 4. Next, navigate to Maintenance > Security Certificates > Server certificate. Click on the choose file and select the server certificate signed by the public CA to be uploaded. Then click on the Upload New certificate.
  • Page 38 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Create zone. Configure the credentials on Expressway-E Procedure 7 Step 1. Navigate to Configuration > Authentication > Local database and click New. Step 2. Enter the following values in the relevant fields: PAGE 38...
  • Page 39 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Name—admin  Password—[password ]  Step 3. Click Create credential. Procedure 8 Configure traversal server zone on Expressway-E Step 1. Navigate to Configuration > Zones > Zones and click New. Step 2.
  • Page 40 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Create zone. Mobile and remote access is now configured. You can now go to Expressway –C and Expressway –E web interface and check under the Status > Unified Communication status > to confirm the traversal link is established and all services have been configured Figure 5.
  • Page 41 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Figure 6. Expressway-E Unified Communication status PAGE 41...

  • Page 42: Deploy B2B Collaboration

    Deploy MRA and B2B Collaboration Contents Deploy CUBE Deploy B2B Collaboration Configure SIP trunk security profile on CUCM for Cisco Expressway-C Configure SIP trunk on CUCM to Expressway-C Configure SIP route pattern on CUCM for B2B Configure firewall Configure neighbor zone on Expressway-C for CUCM...
  • Page 43  Accept replaces header—Selected  Step 3. Click Save. Procedure 2 Configure SIP trunk on CUCM to Cisco Expressway-C Step 1. Navigate to Device > Trunk and click Add New. Step 2. Enter the following: Trunk Type—SIP Trunk ...
  • Page 44 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Next. Step 4. Enter the following into the relevant fields. Leave the other fields at their default values. Device Name—SIP_Trunk_ExpC  Description—SIP_Trunk_ExpC for B2B Calls ...
  • Page 45 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 5. Click Save. Procedure 3 Configure SIP route pattern on CUCM for B2B The following SIP route pattern is configured to route all B2B calls towards the Expressway-C, which doesn’t match any existing route patterns.
  • Page 46 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Type—Neighbor  H.323 Mode—Off  Mode—On  Port—5560  Transport—TCP  Peer 1 Address—10.106.170.135  Peer 2 Address—10.106.170.135  Zone Profile—Cisco Unified Communications Manager  PAGE 46...
  • Page 47 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Create Zone. Procedure 6 Configure traversal client zone on Expressway-C Step 1. Navigate to Configuration > Zones > Zones, and then click New. Step 2.
  • Page 48 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE PAGE 48...
  • Page 49 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Click Create Zone. Procedure 7 Configure search rules on Expressway-C Step 1. Navigate to Configuration > Dial Plan > Search Rules, and click New. Step 2.
  • Page 50 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Description—Outbound B2B calls  Priority—101  Mode—Alias Pattern Match  Pattern type—Regex  Pattern String-(?!.*@mmcvd.ciscolabs.com.*$)(.*)  Pattern Behavior—Leave  On Successful Match—Stop  Target—TraversalClient (B2B)  State—Enabled ...
  • Page 51 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Description—Striping out port info from URI  Pattern type—Regex  Pattern string—([^@]*@[^@]*)\:\d\d\d\d.*  Pattern behavior—Replace  Replace string—\1  State—Enabled  Step 3. Click Create Transform. Procedure 9 Configure traversal server zone on Expressway-E Step 1.
  • Page 52 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Username—b2badmin  H.323 Port—6011  Port—7011  Mobile and remote access—No  Transport—TLS  Step 6. Click Create Zone. PAGE 52...
  • Page 53 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Procedure 10 Configure DNS zone on Expressway-E For a B2B call, the Expressway-E doesn’t need to have established peering relationships with remote domains. Rather, the Expressway-E routes calls to remote domains via information discovered in public DNS.
  • Page 54 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Procedure 11 Configure search rules on Expressway-E Step 1. Navigate to Configuration > Dial Plan > Search Rules, and click New. Step 2. Enter the following into the relevant fields, leaving other fields at their default values: Rule Name—...
  • Page 55 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Procedure 12 Configure transform on Expressway-E Step 1. Navigate to Configuration > Dial Plan > Transforms and click New. Step 2. Enter the following into the relevant fields: Priority—1 ...

  • Page 56: Section 2: Deploy Cisco Unified Border Element (Cube)

    Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Section 2: Deploy Cisco Unified Border Element (CUBE) Easy Access Configuration Sheet The following tables provide you with a place to capture all the information you may need during the configuration of CUBE-related services.
  • Page 57 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 3. Configure other global settings to meet Service Provider requirement as below: Step 4. Enable the topology hiding on the CUBE Step 5. Configure IOS dial-peers on the HQ CUBE for call routing PAGE 57...
  • Page 58 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 6. Configure the voice translation rules to strip of the access code 9 Step 7. Configure voice translation profile to associate translation rule created in step 6 Procedure 2 Creating Route patterns on CUCM to route IP PSTN calls to the HQ CUBE For creating route pattern on CUCM please refer to the document...
  • Page 59 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Procedure 3 Creating SIP trunk between CUCM and HQ CUBE Step 1. After logging into the web administration of the CUCM navigate to the Device->Trunk Menu and then click Add New Step 2.
  • Page 60 Deployment Details Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Step 5. In the message window click OK Step 6. On the Trunk Configuration page, click Reset Step 7. On Device Reset page, click Reset and then click close Procedure 4 Enabling the CUBE application on the branch IOS router Reader Tip...
  • Page 61 There can be SIP trunking to more than one service provider either for load balancing or as alternate routing option. For SRST configuration please refer the Unified Communications using the BE6K tehcnology design guide: http://www.cisco.com/c/en/us/solutions/enterprise/validated-designs-collaboration/index.html Tech Tip The branch might also consider to have a back up E1/T1 PSTN in case of WAN failure or access to emergency services.

  • Page 62: Appendix A: Product List

    Pre-deployment Checklist and Tasks Deploy MRA and B2B Collaboration Contents Deploy CUBE Appendix A: Product List Component Product Description Part Numbers Software Call Control Cisco Business Edition 6000 with up to BE6K-SW-11.0 11.5(1) 1000 users Cisco Cisco Expressway-C EXPWY-VE-C-K9 X8.8 Collaboration Edge...