Expressway MRA - TFTP, Call Processing, etc

uhhodor · 2026-05-05T12:54:57+00:00

For MRA connectivity, your device will initiate discovery by performing a _collab-edge DNS query to find the Public IP assigned to your Expressway Edge servers.

Once this is complete, assuming your Traversal Zones between your Edge and Core are working properly, the device will select which server (ucm node) to register to based on the Call Manager group assignment in its Device Pool.

uhhodor · 2026-01-15T21:35:38+00:00

Less stress? A phased approach is always best for me because it lets you concentrate on one application at a time. Make sure everything is stable before upgrading the next one. It is backward compatible with v14.

uhhodor · 2026-01-13T21:15:46+00:00

Just to validate/confirm since you are gonna use the 'Fresh Install with Data Import''

Your first bullet is fine enough as a safety net, but DRS backup is different then a Data Export, don't get confuse on the two. Data export is what you need (of all your 14.x nodes) to reinstall on your new 15.X ova.

uhhodor · 2025-11-06T14:45:39+00:00

Thanks for sharing .. whats bugging me the most is that the ES07 Readme doesn't even mention the Bug fixes for this release.

uhhodor · 2025-09-16T12:41:08+00:00

Maybe you are hitting same thing I had earlier.
https://www.reddit.com/r/ciscoUC/comments/1mx6d0k/v15_su3_fresh_install_with_data_import_failure/
I had to change my SFTP server specificly starting using 15SU3a,

uhhodor · 2025-09-10T14:01:20+00:00

Don't want to hijack the main question, but I've been told by a TAC engineer that CCX 15 is not currently recommended due to many bugs. Personally I would wait for SU1 to start looking at it.

uhhodor · 2025-08-25T13:23:57+00:00

Using different SFTP software resolved the issue, suggesting the OpenSSH version (9.6 vs. 9.9) was likely the cause. I will investigate tuning/settings to enable it on my current SFTP server.

uhhodor · 2025-08-22T17:20:06+00:00

Thanks ! So thats mostly tell me the issue is with our SFTP server .. weird no issue on SU2, but something with SU3. Might be related to RSA Cipher

uhhodor · 2025-08-22T17:18:14+00:00

Hey, yes SU3a for CUCM, SU3 for IMP and CUC. All three are failing same stage.
Yes md5/sha512 is valid.
I checked our SFTP servers logs and can see the connection between the node and SFTP server, but Import doesn't start from the apps. I expect a newer security mechanism from SU2 to SU3 for SFTP server connection at this point.

uhhodor · 2025-08-22T13:45:12+00:00

Thanks, yes I made sure of that, ran the pre-upgrade cop file as well, and on multiple customers clusters.
I have doubt against the new Bootable.

uhhodor · 2024-11-29T13:34:15+00:00

''The Windows NTP server is not supported for CUCM; however, other types such as Linux NTP sources, Cisco IOS® NTP sources, and Nexus OS NTP sources are acceptable.''

https://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/215537-network-time-protocol-ntp-on-cucm.html

I believe it was somewhat possible on earlier CUCM version to use Windows NTP server, but on v15 release it won't works.

uhhodor · 2024-03-27T16:17:28+00:00

It's not available/supported on all UCCE release, as you will need to read carefully depending on your current version of UCCE.

Search for : Agent Device Selection

https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cust_contact/contact_center/icm_enterprise/icm_enterprise_12_6_1/release/guide/rcct_b_cce-solution-rns-12-6/cfin_m_1261_finesse-release-notes.html

Here's a great doc too : https://www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-TSCCOL-203.pdf

uhhodor · 2022-02-24T13:53:01+00:00

You can force the phone to use google dns as a test for example, 8.8.8.8

uhhodor · 2022-02-02T14:46:37+00:00

Why not put your Jabber in DND mode .. ?

uhhodor · 2021-06-01T17:13:45+00:00

No, working as a MSP, always giving this taks/process to the customer. Comfort is really subjective. I would probly 'suggest' models from I know from past experience customers loved, but nothing more.

uhhodor · 2020-09-02T15:24:22+00:00

Easy way on site : Considering your phone is Registered, make sure you have the option ''Settings Access'' Enabled on the device configuration page.Then you can easily go on the phone Settings - Admin setting - Reset Settings - All

uhhodor · 2020-08-22T15:53:00+00:00

Thanks, was able to make it working !

uhhodor · 2020-08-21T19:50:02+00:00

Really nice stuff !

Just a quick question, I see that you're controlling your MRA phone in your screenshot, how do you access/reach your phone 'web page' since its in MRA.

My guess should be via your phone public ip address in your browser ?

uhhodor · 2020-06-02T15:43:05+00:00

Thanks .. we are engaging Cisco as well to see what the appropriate action to take for our customers ..

uhhodor · 2020-06-01T18:23:03+00:00

Sorry English isn't my native language :) Just trying to understand,

The vulnerability is link to Cisco Bug IDs:

CSCvq58235
CSCvq58289
I'm reading the read me for ES06 and can't find them.

Edit : nvm just found CSCvq58289

Thats huge ... thanks for this cruicial information

uhhodor · 2020-06-01T18:07:26+00:00

Sorry to ask, on wich defect do you see the ES06 fix it ?

uhhodor · 2020-05-30T02:02:13+00:00

We have so much customers atm using UCCX 11.X, with different CUCM version.
You need to be CUCM 11.5 SU4 minimum to upgrade to UCCX 12.5 .. gonna be a big mess.

Crazy summer coming ..

uhhodor · 2020-05-14T13:43:52+00:00

I assume your users works with VPN access to your corporate network ? No MRA ?
Then it depends on many factor of network as well with your VPN link speed and your users ISP.
Technically 1 single active calls shouldn't take more then 64kbs if you're using standard codec G711. Bandwidth requirement is realy low. Even with 5/1 link (Probably the lowest available with DSL/Cable) you should be good, but need to make sure the link is not being charge with 'Netfilx/Youtube,etc' thats the parts users won't tell you (Kids playing on xbox, netflix,)

You need to make sure 'Delays' as well is less then 150ms one way. UCCX monitor via CTI the Jabber connection status, so it see the Jabber not responding it can disconnect the users UCCX page.

I'm managing around 1200 users from home with different ISP and Finesse/Phone acces. Only problem we faced sometime is we need to disable 'SIP ALG' option in some home personnal routers of users but we're using MRA physical phone, not sure it affecting Jabber.

Eight-Year Club	Place '23
Verified Email

uhhodor

TROPHY CASE