A possible workaround to this limitation is to preset the port(s) to be used by SoftPhone within the application itself. In such a case, these ports would have to be matched discretely by ACL entries on the network tracking. Furthermore, each port being used for Call-Signaling also would require a discrete ACL entry.
However, even when all these ports are buttoned down and discrete ACLs are configured to match them, another limitation of the switch comes into play. Specifically, something can support policing in only 1-Mbps increments on Fast Ethernet ports. Such lax policing leaves a fairly large hole to allow unauthorized traffic that is mimicking Voice or Call-Signaling to be admitted onto the network.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment