RE: [fw-wiz] Checkpoint NAT H.323 support
From: Warren Verbanec (Warren.Verbanec_at_resilience.com)
Date: 11/23/04
- Previous message: lordchariot_at_earthlink.net: "RE: [fw-wiz] Security of HTTPS"
- Maybe in reply to: Luis Maria Sainz Caballero: "[fw-wiz] Checkpoint NAT H.323 support"
- Next in thread: Luis Maria Sainz Caballero: "RE: [fw-wiz] Checkpoint NAT H.323 support"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Rob Hughes" <rob@robhughes.com>, <firewall-wizards@honor.icsalabs.com>, <fw1-gurus@lists.phoneboy.com> Date: Tue, 23 Nov 2004 13:29:54 -0800
Hi
As of R55 HFA 08 or so, FW-1 has supported H.323 v2 and v4 quite nicely. NATted gatekeepers should be translated just fine in the H.225 stream.
Please check your configuration over. What kind of H.323 gear is this?
-Warren Verbanec
Resilience Corporation
-----Original Message-----
From: Rob Hughes [mailto:rob@robhughes.com]
Sent: Saturday, November 20, 2004 3:39 PM
To: firewall-wizards@honor.icsalabs.com
Subject: Re: [fw-wiz] Checkpoint NAT H.323 support
On Thu, 2004-11-18 at 16:46 +0100, Luis Maria Sainz Caballero wrote:
> Hi people,
>
> I am new to the list and I hope you help me. I have a problem with
> FW-1/VPN-1 NG with AI (R55) and the H.323 support. I am trying to register
> (H.323 RAS) a VoIP gateway inside my trusted network with a gatekeer on
> the Internet. I have already configured the VoIP domains (one for the
> gateway and another for the gatekeeper) in the FW, applied the last hotfix
> acumulator (HFA_11) and configured static NAT for the internal gateway to
> a public IP.
> The gatekeeper cannot respond because the IP inside the h225 payload isn't
> traslated, and I have confirmed it using the monitor inside de Firewall
> (fw monitor).
> Anybody know if Checkpoint really suports H.323 NAT? or can be a problem
> of mixconfiguration?
>
What does your rule look like? Specifically, what service are you using?
Also, the CP docs have examples of how to set this up. Have you tried
following those? But yes, it does (mostly) work.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: lordchariot_at_earthlink.net: "RE: [fw-wiz] Security of HTTPS"
- Maybe in reply to: Luis Maria Sainz Caballero: "[fw-wiz] Checkpoint NAT H.323 support"
- Next in thread: Luis Maria Sainz Caballero: "RE: [fw-wiz] Checkpoint NAT H.323 support"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
