Every once in a while I get asked if there is a better way to distribute firmware to phones across the WAN. The obvious driver is the general performance (or lack thereof) for the standard TFTP approach when handling a large number of requests. This is one of those questions that usually comes up the day before a mass firmware upgrade and then goes to the back burner, only to come up again during the next upgrade cycle. Nonetheless it is an important consideration and, fortunately, there are several options available to us.

The Cisco TFTP Service

Can anyone help me to disable file sharing on Webex for specific users.Or disable for all and enable for few users. Engage with Cisco experts, share feedback on products and connect with peers from across the globe. Cisco Champion 2021 applications are open fo. UCCX: HTTP Triggered Applications. File and content sharing Share even the largest of files in a secure space that’s neatly organized, searchable, and saved right alongside all your chats, so it’s easy to find what you need.

With VPN file storage, sharing inside your company is difficult enough, but sharing outside your company can be downright impossible. File sharing with Dropbox, on the other hand, is as easy as clicking “Share” or copying and pasting a link. There’s no need to create accounts for every person who needs access to a file or folder.

The Cisco Unified Communications (CUCM) solution architecture has a TFTP service that you enable on one or more servers in a given cluster. Depending on the size of your deployment, you may have this service running on the Publisher node or multiple nodes dedicated to providing supplementary services (i.e. non call processing services) to the cluster and its endpoints. I typically recommend having two TFTP services in the cluster and I prefer not to run this service on the Publisher or call processing nodes in larger environments.

The role of the Cisco TFTP service is to serve files such as firmware images to requesting services or end points. In addition the TFTP service is responsible for generating configuration and security files. For binary images that the TFTP service provides you must load or install a package containing the appropriate firmware loads. A package usually contains multiple binary images that are used by the phone. Once you load the package, all binary files are stored on the TFTP server. You can view these files from the CM platform web portal or via the command shell:

admin: file list tftp *

For device configurations, the TFTP service creates configuration files based on the data entered into the CUCM admin web portal, via the AXL/SOAP interface, or through the Bulk Administration Tool. Whichever interface is used, all roads lead to the same place – DBL Helper. The process summary follows:

1. DBL writes configuration data to the database on publisher node
2. Database information is replicated to all cluster nodes
3. Notify process informs all CUCM nodes to reset the record instance
4. DBLNotify informs the TFTP service of changed record information

TFTP Performance

The Cisco SRND for Cisco Unified Communications 7.0 provides a solid discussion on what type of performance can be expected using the TFTP protocol. The basic idea is that each client requesting a firmware file takes up a TFTP session. While consideration on server performance capabilities should come into play, the network plays a huge role in actual performance.

The first factor is the round trip time or overall network latency between the requesting endpoint and the TFTP server. As with call signaling and media processing, more latency has an overall negative impact on performance. The second factor is packet loss. TFTP operates as a lock-step protocol. Which means the sender will send one packet and wait for a response before sending another packet. There is a prescribed “wait time” (4 seconds by default) that the TFTP service uses to determine if a packet should be re-transmitted. The formula one could use to estimate the time it takes to transmit a file using TFTP is:

TransferTime = FileSize * ((RoundTripTime + ErrorRate * Timeout) / 512000)

To get a feel for what that means to you check out some of the following data points.

ExamplesABCRound Trip Time (ms)Size of files (bytes)Assumed Error Rate (percent)Timeout period (ms)File Transfer time (seconds)File Transfer time (minutes)

Using example A as a base line we have a 5 ms round trip time (RTT) value and a 1% error rate on the network. In Example B we see that doubling the RTT to 10ms increases our transfer time by about 1 minute. In Example C, the RTT is the same as A but the error rate increases by 1%. The net result is that the total transfer time increases by approximately 8 minutes. The data in this table is for one single download instance, in reality when using the traditional TFTP approach you will have multiple phones attempting TFTP downloads across your network. If any network link gets saturated at any point during the download foray, your RTT and error rate may increase. If you find yourself in this situation, you may also see multiple phones fail to upgrade their firmware due to multiple failed attempts. Not a nice scenario at all.

Procedure Optimization

In additon to the standard TFTP approach we are going to discuss two other options available to Cisco customers. Regardless of which option you use, we recommend that customers consider two operational concepts when thinking about how to deploy TFTP in their CUCM environment. The first concept is having more than one TFTP server in the cluster. The obvious benefit is redundancy but there is a load balancing opportunity here as well. By staggering Option 150 configurations in DHCP scopes you can roughly distribute the load across multiple TFTP servers.

The second concept comes into play when pushing out the firmware. If you have Option 150 assignments balanced then you can use this “balance” when putting together your implementation plan. You can break your deployed IP phones into smaller groups, organize by primary TFTP. For instance, say you have four groups of phones two of these groups use TFTP-SERVER-A and two use TFTP-SERVER-B. You can then push firmware to TFTP-SERVER-A group 1 and TFTP-SERVER-B group 1 at the same time.

The net benefit you get from the above methods depends on the size of your deployment and whether you have a cluster geographically distributed across multiple data centers. In larger deployments you probably have TFTP servers in at least two data centers and you may have redundant network paths from WAN offices to these data centers. You may also be running a routing protocol that natively load balances across equal cost paths. Take all of this into consideration when you determine your TFTP design and make sure you optimize for operations. Again, this should be done whether you are using the standard “vanilla” method for pushing firmware or one of the following.

Options – Load Server

This option has actually been around for a long time but not many people (at least folks I have worked with) are aware of it or use it. The basic idea is that the administrator can assign a TFTP server to each individual phone record using the “Load Server” parameter on the record itself. This is only used for downloading firmware to the phone. The following figure illustrates the concept.

On the surface this sounds like a great idea. This approach does have a huge upside of localizing TFTP traffic, however it does have some potential drawbacks. Fortunately, most of the downside can be controlled if the correct operational discipline is applied. Some of the areas to be aware of:

Distribution and Synchronization (build your own automation):

When you use a Load Server you are typically pointing the phone to a TFTP service that is running on their local LAN (or other optimal location). This server can be a Windows box, Linux box, or even an IOS router configured to service TFTP files. In all cases, the Load Server is not a member of the CUCM cluster and this means you have to manually copy files to all Load Servers. Of course, you can mitigate potential errors here using scripting tools that automates the process of pulling files down from one of the CUCM TFTP servers and then pushing them to the Load Servers.

Moves-Adds-Changes (make sure you audit configs):

Since each phone is assigned a Load Server there is a huge potential for misconfiguration or configurations that do not correlate to your intended design. This is because it is a completely manual process. First and foremost, you have to be aware that there is no “fall back” capability when using the Load Server options. So, if someone fat fingers the Load Server’s address on a phone record, that phone is toast. The phone will try to start a TFTP session with the Load Server and when that fails the phone doesn’t fall back to the TFTP server.

As with other config aspects for phone records, you should incorporate the Load Server parameter in your bulk provisioning plan and you should incorporate checking/validating Load Server parameters in your regular system optimization plans. Don’t have a regular system optimization plan? Well, that is a topic for another day.

Diagnostics and Troubleshooting (using different tools):

When using the Load Server option you no longer have the ability to look at the CUCM syslogs to troubleshoot any issues that crop up related to firmware downloads. The phone also doesn’t give much in the way of diagnostics for TFTP download. This is simply because the TFTP server is not part of the CUCM cluster. Depending on the application you are using for TFTP you may or may not be able to enable diagnostics tracing. If you can enable tracing/logging you definitely should and if you can push the logs to a centralized syslog server that also collects the CUCM syslogs then that is optimal. In large environments, this still gets hairy and it all comes down to making sure your operational procedures are well defined and well communicated.

Options – Peer Firmware Sharing

Peer firmware sharing is a feature that was added to Cisco phone firmware around the 8.3(1) release. Basically, phones participating in this firmware distribution model will form a peering relationship in a tree-based hierarchy. One phone will peer with up to two other phones. Once the peering relationship is established, the root phone will retrieve the upgraded firmware files from the Cisco TFTP server and then distribute the files to associated peers after the files are downloaded. The objective is to minimize dependency on the WAN during bulk firmware upgrades and to increase the overall time needed to upgrade a large phone environment. The following diagram provides a basic illustration of the process.

First, phones use UDP broadcasts to ask for a specific upgrade file. One phone assumes the root for the firmware file distribution hierarchy. Each phone then establishes a TCP connection to their respective child nodes and the distribution tree is established. Once the root completes the download for a particular file, it will copy the file to its child nodes and move to the next download file in the firmware set.

Unlike the Load Server option, if there is a failure when trying to establish a peering relationship the phone experiencing the issue will fallback to the standard TFTP methodology. It should also be noted that the peering relationship is only established between phones that use the same firmware and are on the same subnet. So, if you have a mixture of 7962, 7942, and 9971 phones on a single subnet a total of two trees will be established within the subnet. The 7942/62 phones use the same firmware build and will establish one tree while the 9971 phones will establish a separate tree.

Conclusions

The choice that is made in your operational environment depends on many things. First, if you haven’t already done so, build some redundancy into your TFTP solution of choice. Second, you may want to consider leveraging DHCP configurations to distribute assignment of your TFTP server. Why? Well, these methods are only referring to distribution of phone firmware and do not help with distribution of any other file that may be serviced by the TFTP server (i.e. configuration files, ring tones, etc.). Also, aside from the Load Server option, all options assume that there is still some portion of the environment downloading firmware files from the TFTP servers. Finally, if there is some issue encountered during peer firmware sharing phones will still fall back to their TFTP configuration. So, it is better to design for the worst case scenario.

Once you get past the TFTP server roles then you have to determine what your network can handle. You will need to look at this within the network models you have established (i.e. small office, medium office, large office, metro office, etc. etc.). Basically, understand what your network can or can’t accommodate. You should make sure you have a decent optimization plan in place to keep things finely tuned.

Maybe a comparison table would be nice to wrap this up.

ProsConsLegacy TFTPLoad ServerPeer Firmware Sharing

Original post# http://www.netcraftsmen.net/blogs/entry/options-for-distributing-cisco-phone-firmware.html

The best file sharing software is monday.com. This award-winning collaboration platform offers a user-friendly interface that lets users store their project files in a central hub for easier retrieval. Moreover, it can support all sorts of files ranging from documents to images to videos.

The COVID-19 pandemic taught us that it is not enough to have an on-premise intranet for documents and other digital assets. File sharing software solutions and other digital workspace products became even more essential in running an organization amidst a crippling pandemic.

However, not all file-sharing services are created equal. There are just those that are the cream of the crop. And, there are just those that fit your needs better.

In this article, our experts surveyed the market and compiled the 10 leading file-sharing systems based on features, price, security, support, and other essential factors. You will notice that the vendors often offer similar capabilities. The key is to find those little things that could prove crucial when you make your final decision.

When the pandemic hit, businesses shuffled to run on distributed teams. Naturally, that meant hooking business processes to the cloud, fast. Among other things, that meant running file and document sharing between employees on the cloud. This was the main reason for hastening digital transformation.

Even way before the pandemic started, however, many organizations deemed cloud-based applications to be the most efficient and cost-effective way to improve collaboration between various departments. And, collaboration is one of the primary drivers of adopting file sharing and similar technologies.

However, many professionals and organizations had and still have apprehensions about security. In fact, this is a pretty legitimate concern.

In the last six years, the average cost to a US business after a data breach has been increasing. In 2015, the average cost to a business was $6.53 million. Come 2020, the figure reached $8.64 million. This is 32.31% growth in just a little more than a decade. The most common forms of cyberattacks in 2019 included phishing and network intrusion.

Thus, when looking for a good file-sharing system, one must not only take a look at its operational features and its ease-of-use. Software hunters must also consider the safety and security standards such as encryption and permission features.

1. monday.com

monday.com is designed to make file sharing and management as easy as possible. The software provides users with up to 4 ways to upload files to a centralized platform. This ensures that users can quickly share files from wherever they are on the platform.

Moreover, monday.com has a ‘Files View’ that lets you view all uploaded files in one place, whether these are documents, pictures, or contracts. From the Files View board, you can download and preview files users have uploaded to all boards. All uploaded files are kept in context to ensure that everything stays organized. The vendor offers a comprehensive free trial to get you up to speed with the features.

monday.com

Try out monday.com with their free trial

Users can upload files up to 500mb, even from the monday.com mobile app. For bigger files, monday.com allows users to upload zip files from Google Drive, Dropbox, Box.com, or Microsoft OneDrive.

This hassle-free file management capability is perhaps one of the reasons why monday.com is also one of the most efficient collaboration software today.

2. Dropbox Business

Dropbox Business offers best-in-class and easy-to-use functionalities that have been helping millions of users worldwide achieve better collaboration, productivity, and overall workflow.

Dropbox Business has a simple interface that belies its extensive capabilities. The software centralizes important team files into one platform, ensuring easy access for anyone who needs these files. With Dropbox Spaces, the software also brings together local files and cloud content to improve file organization.

The platform also has plenty of features to improve security for your business. It uses a secure, distributed infrastructure to ensure that sensitive files and data are safe. For further protection, the administrators can control file visibility and users’ download capabilities.

Dropbox Business is available in 2 plans: Standard and Advanced. The Standard plan offers up to 5TB of secure storage, while the Advanced plan can give you as much space as your team needs.

3. Google Drive

Google Drive is a cloud storage service that allows you to store your files, videos, music, photos, etc. in a single location. It automatically syncs your data with all the devices linked to your account, which means they immediately receive the updates and changes that you make.

Google Drive also monitors the changes you made in the past 30 days, enabling you to go back and redo/undo the changes. The platform relies on Google search and uses popular Google features such as image recognition to browse your photos, and OCR capabilities to extract text in pictures.

4. Synology Drive

Perfect for personal or office use, Synology Drive makes your file readily available from anywhere you are. It offers ample storage capacities reaching up to hundreds of terabytes. The software also allows you to choose the right Synology NAS or hard drives for you.

The on-demand sync feature of the platform lets you save disk space and bandwidth. You will still get to see all your files in the synced folders that you have, but you can only stream them on your desktop once you open them. Also, you can choose to exclude specific subfolders and file formats, as well as put a limit on the size of your files.

Another critical feature of Synology Drive is its restore capability. The Intelliversioning algorithm that comes with the software can show you the most significant changes in your storage. This way, the system versions will not be taken up by small recent changes, and you can restore previous versions as easily as right-clicking them.

5. Dropbox

Dropbox for SMBs offers flexible pricing plans that can be used by organizations of all sizes. It uses off-site servers for file storage and sharing. The solution allows you to automatically sync your files online and across the devices you use. Files can be managed as you do on your desktop. The software allows you to access your files on secure servers from multiple devices, including desktops, Mac, iPhone, Android, and Windows Phone.

Dropbox also has some extra features that make file sharing more efficient. You can set permissions so only people with the right credentials can view your uploaded files. The platform can also notify you of any changes made to your files.

For added convenience, the platform offers integrations with a wide variety of software, including communications software like Slack, RingCentral, and Cisco WebEx.

6. Box

Box is a file sharing service that provides secure collaboration from any device. You can use it to easily manage and share files across your company. The service is used by more than 50,000 organizations worldwide, including top brands like Pandora, Boston Scientific, Gap, Nationwide, and GE.

You can use Box to easily create, edit, and review documents with other users in real-time or on the go. The vendor uses protection measures like customer-managed encryption, activity logs, granular permissions, and mobile security to provide tight security for stored files. Plus, the service enables you to comply with e-discovery requests, data retention, and regulatory policies. It also allows for global compliance by assisting your organization in meeting regulatory and business requirements.

7. Apple iCloud

Apple iCloud is a cloud-based file-syncing and storage solution that enables users to store files in the cloud. The stored files are automatically synced to all devices in the account, including both Windows and Mac systems. The service comes with offerings such as the iCloud Photo Library and iCloud Drive, where you can keep all your files stored securely and updated everywhere. The Family Sharing feature lets you easily share photos, movies, music, and more with your family members. Find My iPhone helps you find your Apple device if you lose it.

Apple iCloud lets you make folders for your files and provides online storage for productivity suite software such as Keynote, Numbers, and Pages. Setup is easy on all devices, including PC, Mac, iPod touch, iPhone, and iPad. If you have bought a new Apple device, you can use the setup assistant for guidance. And for other devices, getting started only needs a few quick steps.

8. FileCloud

Cisco Asa Allow Windows File Sharing

At just $10 per user per month, FileCloud allows your organization to enjoy 1 TB of cloud storage for the first 5 users and host and share documents and files for company-wide collaboration. The price plan includes an option to choose a region to host your data. If you feel more comfortable hosting your files on your servers. The price even gets better, at just $4.20 per user per month.

FileCloud’s on-premise or on the cloud file sharing service comes with a robust sync feature that you can easily configure based on a preferred schedule. File sharing extends to even remote branch offices with reduced network latency. To navigate large volumes of data, FileCloud comes with a powerful search engine that allows for file content search.

FileCloud recognizes businesses’ need to present themselves to the world the way they want. To that effect, it allows full white label customization, gives you an option to run your own domain, along with multiple language support.

FileCloud applies one of the most robust file security measures around, so you need not worry about prying eyes running away with your information assets. Aside from antivirus scans and ransomware protection, you also get two-factor authentication, pattern search, and single sign-on, along with support for FINRA, HIPAA, and other security protocols.

9. OneDrive For Business

Microsoft’s OneDrive for Business is one of the best-regarded file sharing applications in the market, leveraging Microsoft’s vast experience and resources to provide customers with a stable, robust, and well-protected system to collaborate with shared files.

The cloud-based platform provides customers with the flexibility of a fully mobile system to allow teams to work together from anywhere in the world. OneDrive for Business syncs files in real-time, so users need not worry about working with outdated versions of their documents and other files.

As one of the top file sharing software solutions today, OneDrive for Business is covered by one of the toughest, most stringent security protocols available in the market. This means that your most important files stay in the server and not ending up in the hands of online predators. The program protects you from the headache of accidentally losing files by allowing easy recovery even in the case of malicious attacks. Your business can start OneDrive for just $5 per user/month.

Cisco Secure File Sharing

10. Encyro

Next on our list of top file sharing systems is Encyro. Designed for SMBs and freelancers, the platform offers robust features for safe file and data management. It provides multi-layer enterprise-grade encryption that ensures secure file transfer, organization, and backup.

Encyro’s 16 layers of security and automated encryption technology allow users to send and receive files and messages to any email address without the need for client portals and shared folders. With Encyro, users can create an upload page where files and messages can be uploaded without requiring senders to create an account and enter usernames and passwords. What’s more, users can customize the upload pages to add their branding.

Another thing worth noting about Encyro is how it automatically organizes files and documents by contact. With this, users no longer have to manually search and move files. Every Encyro account also comes with adequate storage space for shared files. Moreover, as Encyro integrates with top email service providers including Outlook, Gmail, and MS Exchange, users can send and receive files through the systems they already use.

Cisco File Sharing Windows 10

Go for a Free Trial Before You Take the Final Plunge

These 10 file-sharing solutions should give you a good idea of which one to use for your business. But, as you have seen, not all of them are simply file-sharing platforms. Our top pick, monday.com is a collaboration and project management suite rolled into one. This is because file sharing, in a business situation, is not that simple anymore.

File sharing is embedded in a much greater context of general collaboration. And, monday.com is one of the best platforms for managing distributed teams on the market today. You can easily check out what we mean when you sign up for a monday.com free trial.

Cisco File Sharing

However, if you really just want a standalone platform for managing documents. You can check out our analysis of the best document management software tools out there.

Cisco Jabber File Sharing

But nothing really beats the actual use of the application, so if you could contact these vendors and manage to arrange a live demo or free trial, you get a chance to get a better feel of how an application should work for your business.

You may also opt to work with the vendor on how to hurdle the issue, to make everything just right for a compelling presentation to the purchasing board.