Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

h.323 conversation

Hello, I am looking for help on configuring the h.323 inspection rules on a ASA5520. I have a h.323 device on my inside network that moves around and i would like to create a rules that allow h.323 traffic to specific outside devices. Can anyone help me out with this configuration? Thanks!

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: h.323 conversation

You must permit traffic for the well-known H.323 port 1720 for the H.225 call signaling; however, the H.245 signaling ports will be negotiated between the endpoints in the H.225 signaling. Also note that the security appliance does not support TCP options in the Proxy ACK for the TPKT. Following link may help you

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/inspect.html#wp1229306

1 REPLY
Silver

Re: h.323 conversation

You must permit traffic for the well-known H.323 port 1720 for the H.225 call signaling; however, the H.245 signaling ports will be negotiated between the endpoints in the H.225 signaling. Also note that the security appliance does not support TCP options in the Proxy ACK for the TPKT. Following link may help you

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/inspect.html#wp1229306

151
Views
0
Helpful
1
Replies