?
Solved

Adding Voip Network

Posted on 2009-05-12
2
Medium Priority
?
242 Views
Last Modified: 2012-05-06
Current setup is a Bonded T on a Cisco 2610 with mutilple static ip's. Cisco 2610 has a single ethernet port to a Watchguard Firewall appliance that uses one of static ip's and a single LAN behind it. Need to add an Edgewater 4500 router to the Cisco 2610 for Voip network that will use a different static ip and not be connected to the existing Lan or Firewall. As a 'Best Practice' should I add a switch in front of the Firewall and create  Vlans for the two networks or should I get a Cisco 2611 Router that has two ethernet ports? Looking more at the security and performace issues/benefits of which way to go.  
0
Comment
Question by:RollyMan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 5

Accepted Solution

by:
ksims1129 earned 2000 total points
ID: 24373649
There is no bbest practice for anything. Its all about what willl work good in your environment. If security is in mind I would definitely put it behiind the firewall and enable QoS on the outbound of the interface connected to the router to make sure all traffic from Edgewater device has little or no latency when transmitting and recievieng packets.
                                                                                      DataLAN
                                                                                     /
                                                                                   /
INTERNET-----Cisco2610------WatchGuard Firewall
                                                                                    \
                                                                                       \
                                                                                          EdgeWater 4500


It you are not to caught up in security or can properly configure the 2610 to do basic firewall filtering and protecting the device from DoS attacks, I would place a small switch between the 2610 and the watchguard and connect the edgewater device to the switch as well. I would also recommend configuring Qos on the bonded T-1 for LLQ to prioritize the voice paccket
                                                                          WatchGuard Firewall-------------DataLAN
                                                                        /
                                                                     /
INTERNET-----Cisco2610------CiscoSwitch
                                                                    \
                                                                      \
                                                                         EdgeWater 4500
0
 

Author Comment

by:RollyMan
ID: 24373819
Thanks for the answer. Have opted to go for your second recommendation as the Edgewater needs to be directly on the net, as per Voip carriers instructions. I think the Edgewater has it's own firewall anyway.
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question