Re: [fw-wiz] Re: Setting up H323 IP telephony etc - was Re: [fw-wiz] Apple's iSight and Firewalls

From: Frederick M Avolio (fred_at_avolio.com)
Date: 08/27/03

  • Next message: Milon Papezik: "[fw-wiz] NAT vs. GRE tunnel" 
    To: Bret Watson <lists@ticm.com>, firewall-wizards@honor.icsalabs.com
Date: Wed, 27 Aug 2003 13:38:18 -0400

    At 07:30 AM 8/27/2003 +0800, Bret Watson wrote:
    >OK maybe I forgot to give a detail..
    >
    >H.323 is the IP Telephony protocol.. Netmeeting uses it, but so does many
    >other system, such as picturetel and cisco's stupidly expensive wifi IP
    >phones..

    Of course... This gets to my comments on asking the right question to
    determine the REAL REQUIREMENT. H.323 has many simultaneous connections. 2
    or more are TCP. Up to 4 are UDP. All (except 1) are to ephemeral ports.
    Heck, you thought FTP was ugly! At least VoIP just needs H.323. NetMeeting
    (if we really mean NetMeeting) sucks in T.120 also. Even on a firewall that
    proxies all of these, you're talking 25 or so proxies for H.323 and 5
    (whiteboarding, file transfer, chat, etc.) for T.120.

    Fred
    Avolio Consulting, Inc.
    16228 Frederick Road, PO Box 609, Lisbon, MD 21765, US
    +1 410-309-6910 (voice) +1 410-309-6911 (fax)
    http://www.avolio.com/
    PGP Key Fingerprint: 928D 0903 934F 8CFA 6124
                             BBF6 0B45 93C7 3521 CEA0

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Milon Papezik: "[fw-wiz] NAT vs. GRE tunnel"