Video conferencing through Firewall

Unanswered Question
Jul 6th, 2004

Hello,

We have PIX 515 with Version 6.3(3). We are planning to setup Video conferencing to have a conference with our international customers . We are planning to put the Video conference system behind the firewall for security reasons .I would appreciate if anyone have similar setup and share the Tech aspects like what are the ports to be opened in firewall, fine tuning if any on firewall etc...

Thanks in advance

Raju

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 0 (0 ratings)
shannong Thu, 07/08/2004 - 11:03

I'll make the assumption you're using H.323?

The fixup support for H.323 is pretty good now and even works with PAT. If you can avoid, don't use PAT for your server. Use NAT with a static statement and you'll have fewer problems.

You should be able to make it work with only opening TCP port 1720. However, this varies from one vendor to another as H.323 is a complicated and varied protocol suite. You may also need to open TCP/389 if you have a Netmeeting/MS based session.

raju@hadeed.com.sa Fri, 07/09/2004 - 01:21

Thanks Shannong . We are planning to go for Polycom VC unit and the model is iPower 9000 series.

Thanks with regards,

Raju

shelton.chan Sat, 07/10/2004 - 18:14

Raju,

You can reference as follow:

Port Range Requirements for TCP and UDP on an iPower

TCP

1700 - 1749

UDP Audio

17000 - 17099

UDP Video

17100 - 17299

UDP Port Control

17300 - 17309

Tip: If a call needs to go through a firewall, be sure to open the configured ports at the firewall as well. In addition to these ports, you must open TCP and UDP ports 1503 for T.120 support and TCP port 1720 for H.225.0 Call Signaling.

And also, you can find more details on polycom web site.

HQABMC2004 Tue, 07/13/2004 - 05:11

We're having the same issue here with a Polycom setup. And we are able to VTC using site-to-site VPN. The only problem is that the audio and video quality is not good. We have on both ends the DSL equivalent of T1. That's something to do with encryption. Anybody has an idea to give better results?

Vincent Rochette.

vincent.rochette@abmc-er.org

Actions

Login or Register to take actions

This Discussion

Posted July 6, 2004 at 10:09 PM
Stats:
Replies:4 Avg. Rating:
Views:314 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard