From: Barman, Partha (PBarman@necbns.com)
Date: Fri Jan 09 2004 - 08:02:26 GMT-3
Chicago GKPR:-
gatekeeper
zone local chicago chicago.ccie.net 192.168.62.254
zone remote dallas ccie2.net 192.168.40.254 1719
zone prefix dallas 3*
zone prefix chicago 5*
security password-group dal lrq receive ccie encrypted
security password-group dal lrq send ccie encrypted
security zone dallas password-group dal
gw-type-prefix 5* default-technology
timer lrq seq delay 1
timer lrq window 10
no shutdown
Dallas GKPR:-
gatekeeper
zone local dallas ccie2.net 192.168.40.254
zone remote chicago chicago.ccie.net 192.168.62.254 1719
zone prefix dallas 3*
zone prefix chicago 5*
security password-group chic lrq receive ccie encrypted
security password-group chic lrq send ccie encrypted
security zone chicago password-group chic
gw-type-prefix 4#* default-technology
timer lrq seq delay 1
no shutdown
For some reason, I cannot make calls between the two zones. Receive a InvalidPermission rejectReason in debugs. If I remove the security zone command, I can make calls between the chicago and dallas zones.
The Cisco doc gives example and states a border gatekeeper in between the originating and terminating gatekeeper, which acts like a relay to authenticate and forward lrq between the orginating and terminating gatekeepers. Not sure if the border gatekeeper is always needed.
Please help !!
This archive was generated by hypermail 2.1.4 : Mon Feb 02 2004 - 09:07:38 GMT-3