RE: Netmeeting through PIX

Andrew Lennon Sat, 09 Dec 2000 16:53:36 -0800
As long as you are not using PAT. I came across this a while ago. The
dynamic port allocation is a real killer!

Andy

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Brian
Sent: Saturday, December 09, 2000 23:14
To: Aaron K. Dixon
Cc: Jim Bond; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: Netmeeting through PIX



hmm, if your using a pix or ios firewall you could probably use
application level packet inspection, maybe with some reflexive access
lists to allow most of that stuff to work dynamically (at least for stuff
originated on the inside)

Brian

On Sat, 9 Dec 2000, Aaron K. Dixon wrote:

> I haven't tried this before, but according to microsoft the following
ports
> need to be opened.
>
> Port Function Outbound Connection
> 389 Internet Locator Service (ILS) TCP
> 522 User Location Service TCP
> 1503 T.120 TCP
> 1720  H.323 call setup TCP
> 1731 Audio call control TCP
> Dynamic H.323 call control TCP
> Dynamic H.323 streaming Real-Time Transfer Protocol (RTP) over UDP
>
> If you use a firewall to connect to the Internet, it must be configured so
> that the IP ports are not blocked.
>
> To establish outbound NetMeeting connections through a firewall, the
> firewall must be configured to do the following:
>
> Pass through primary TCP connections on ports 389, 522, 1503, 1720, and
> 1731.
> Pass through secondary TCP and UDP connections on dynamically assigned
ports
> (1024-65535).
>
>
> Reference:
>
http://www.microsoft.com/windows/NetMeeting/Corp/reskit/Chapter4/default.asp
>
>
>
> Regards,
> Aaron K. Dixon
>
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Jim Bond
> Sent: Saturday, December 09, 2000 12:39 PM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Netmeeting through PIX
>
>
> Hello,
>
> I'm setting up a MS Netmeeting server behind a PIX,
> persons outside of PIX will call in. Which ports I
> should open on the PIX?
>
> Thanks in advance.
>
>
> Jim
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Shopping - Thousands of Stores. Millions of Products.
> http://shopping.yahoo.com/
>
> _______________________________________________________
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

-----------------------------------------------
Brian Feeny, CCNP+ATM, CCDP   [EMAIL PROTECTED]
Network Administrator
ShreveNet Inc. (ASN 11881)

_______________________________________________________
To unsubscribe from the CCIELAB list, send a message to
[EMAIL PROTECTED] with the body containing:
unsubscribe ccielab

_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Netmeeting through PIX

Reply via email to
