[cisco-voip] Jabber IM service Issue

Ahmed Abd EL-Rahman Ahmed.Rahman at bmbgroup.com
Mon Dec 18 16:06:43 EST 2017 

What’s the flexible Jabber ID? Also I have local users created on CUCM with no LDAP integration.

For the domain portion it’s not removed if the first login is through MRA and the login failed but as mentioned if I logged in thought inside network before the login through MRA goes smooth and login successfully but with one exception that IM service is not available.






Best Regards

Ahmed Abd EL-Rahman
Senior Network Engineer

From: bmeade90 at gmail.com [mailto:bmeade90 at gmail.com] On Behalf Of Brian Meade
Sent: Monday, December 18, 2017 11:50 PM
To: Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com>
Cc: cisco-voip at puck.nether.net
Subject: Re: [cisco-voip] Jabber IM service Issue

Are you using flexible Jabber ID?

One thing to make sure is that first time MRA login gets rid of the domain portion in the username on the username/password form after entering username at domain in the service discovery window.

On Mon, Dec 18, 2017 at 3:43 PM, Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com<mailto:Ahmed.Rahman at bmbgroup.com>> wrote:
Hi Brian,

Will try what you suggested, but other than this issue I have another symptom, the user must use Jabber for first time from inside the network then afterwards he can use it from outside but if he tries the first time from outside the network it won’t register as all, even the login stage is not passed.

Does this point to anything ?






Best Regards

Ahmed Abd EL-Rahman
Senior Network Engineer

From: bmeade90 at gmail.com<mailto:bmeade90 at gmail.com> [mailto:bmeade90 at gmail.com<mailto:bmeade90 at gmail.com>] On Behalf Of Brian Meade
Sent: Monday, December 18, 2017 11:27 PM

To: Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com<mailto:Ahmed.Rahman at bmbgroup.com>>
Cc: cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
Subject: Re: [cisco-voip] Jabber IM service Issue

Try removing "inspect sip" from the global policy.  You don't want that in there with Expressway.  Not sure if XMPP traffic hits that as well or not.

You can also try refreshing the IM&P Servers on the Expressway-C Unified Communications configuration.

Enabling diagnostic logging on the Expressway-E and Expressway-C then trying to connect should help show what is going on as well.

On Mon, Dec 18, 2017 at 3:16 PM, Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com<mailto:Ahmed.Rahman at bmbgroup.com>> wrote:
Hi Brian,

Currently I’m opening all IP traffic to Expressway public IP on our Cisco ASA FW

Regarding the inspection configured here it is :
policy-map global_policy
class inspection_default
  inspect dns maximum-length 512
  inspect ftp
  inspect h323 h225
  inspect h323 ras
  inspect rsh
  inspect rtsp
  inspect esmtp
  inspect sqlnet
  inspect skinny
  inspect sunrpc
  inspect xdmcp
  inspect sip
  inspect netbios
  inspect tftp

which one could cause this issue ?






Best Regards

Ahmed Abd EL-Rahman
Senior Network Engineer

From: bmeade90 at gmail.com<mailto:bmeade90 at gmail.com> [mailto:bmeade90 at gmail.com<mailto:bmeade90 at gmail.com>] On Behalf Of Brian Meade
Sent: Monday, December 18, 2017 10:43 PM
To: Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com<mailto:Ahmed.Rahman at bmbgroup.com>>
Cc: cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
Subject: Re: [cisco-voip] Jabber IM service Issue

Looks like possible XMPP/TCP 5222 connection issues from the logs.  It just keeps reconnecting over and over again but the port is open on the Expressway and through the firewall.

What model firewall are you using?  You may need to disable some XMPP inspection/application filtering.


On Mon, Dec 18, 2017 at 2:25 PM, Ahmed Abd EL-Rahman <Ahmed.Rahman at bmbgroup.com<mailto:Ahmed.Rahman at bmbgroup.com>> wrote:
Dear Gents,

I have a question regarding Jabber setup, I have Jabber client working fine from internal network but externally it’s able to login and both phone and voice mail services are connected but IM service is not working while IM service works just fine from inside network.

Attached is Jabber client logs for this case.

So any ideas ?

Best Regards

Ahmed Abd EL-Rahman
Senior Network Engineer


_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20171218/c619999c/attachment.html>

More information about the cisco-voip mailing list