Solved

Adding Voip Network

Posted on 2009-05-12
2
237 Views
Last Modified: 2012-05-06
Current setup is a Bonded T on a Cisco 2610 with mutilple static ip's. Cisco 2610 has a single ethernet port to a Watchguard Firewall appliance that uses one of static ip's and a single LAN behind it. Need to add an Edgewater 4500 router to the Cisco 2610 for Voip network that will use a different static ip and not be connected to the existing Lan or Firewall. As a 'Best Practice' should I add a switch in front of the Firewall and create  Vlans for the two networks or should I get a Cisco 2611 Router that has two ethernet ports? Looking more at the security and performace issues/benefits of which way to go.  
0
Comment
Question by:RollyMan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 5

Accepted Solution

by:
ksims1129 earned 500 total points
ID: 24373649
There is no bbest practice for anything. Its all about what willl work good in your environment. If security is in mind I would definitely put it behiind the firewall and enable QoS on the outbound of the interface connected to the router to make sure all traffic from Edgewater device has little or no latency when transmitting and recievieng packets.
                                                                                      DataLAN
                                                                                     /
                                                                                   /
INTERNET-----Cisco2610------WatchGuard Firewall
                                                                                    \
                                                                                       \
                                                                                          EdgeWater 4500


It you are not to caught up in security or can properly configure the 2610 to do basic firewall filtering and protecting the device from DoS attacks, I would place a small switch between the 2610 and the watchguard and connect the edgewater device to the switch as well. I would also recommend configuring Qos on the bonded T-1 for LLQ to prioritize the voice paccket
                                                                          WatchGuard Firewall-------------DataLAN
                                                                        /
                                                                     /
INTERNET-----Cisco2610------CiscoSwitch
                                                                    \
                                                                      \
                                                                         EdgeWater 4500
0
 

Author Comment

by:RollyMan
ID: 24373819
Thanks for the answer. Have opted to go for your second recommendation as the Edgewater needs to be directly on the net, as per Voip carriers instructions. I think the Edgewater has it's own firewall anyway.
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question