Who knows? It's not something that I've ever heard of on the roadmap from CIsco. Technically speaking, I can't imagine it would be terribly difficult to have the various CCM services operate on one interface/IP and the management (HTTP/HTTPS) on another address, but that's just me thinking about it.<br>
<br>Speaking realistically, I've never seen anyone care enough to implement ACL's or application layer filtering to "protect" the admin interface in the real world.<br><br>-matthew<br>
<br><br><div class="gmail_quote">On Thu, Jan 19, 2012 at 6:21 AM, FrogOnDSCP46EF <span dir="ltr"><<a href="mailto:ciscoboy2006@gmail.com">ciscoboy2006@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Thanks Mathew. Would this be difficult to do? Given Cisco has inhouse UC developers.<div class="HOEnZb"><div class="h5"><br><br><br><div class="gmail_quote">On Thu, Jan 19, 2012 at 5:52 AM, Matthew Saskin <span dir="ltr"><<a href="mailto:msaskin@gmail.com" target="_blank">msaskin@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">You can't. Virtual or physical, CUCM only operates using a single interface and single IP address. Closest you're going to get is firewall rules to disallow certain access based on source, and that may not even work as things like authentication URL's are on the same IP/port on the CUCM - you'd have to do some application layer filtering of URL's.<br>
<br><br><div class="gmail_quote"><div><div>On Wed, Jan 18, 2012 at 11:21 AM, FrogOnDSCP46EF <span dir="ltr"><<a href="mailto:ciscoboy2006@gmail.com" target="_blank">ciscoboy2006@gmail.com</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div>
Have anyone figured out yet how to separate CUCM management in VMware or physical deployment?<br><br>It's kind of weird, Cisco's all deployment templates are still putting mgmt and traffic packets on the same eth0 interface.<br>
<br>I bet this is in Cisco's todo list.<br><br>thanks<br>
<br></div></div>_______________________________________________<br>
cisco-voip mailing list<br>
<a href="mailto:cisco-voip@puck.nether.net" target="_blank">cisco-voip@puck.nether.net</a><br>
<a href="https://puck.nether.net/mailman/listinfo/cisco-voip" target="_blank">https://puck.nether.net/mailman/listinfo/cisco-voip</a><br>
<br></blockquote></div><br>
</blockquote></div><br><br clear="all"><br></div></div><span class="HOEnZb"><font color="#888888">-- <br>Smile, you'll save someone else's day!<br>Frog<br>
</font></span></blockquote></div><br>