Hi Jan, thanks for the quick reply. The usecase here is different; this is to allow an external, Internet-based Endpoint to register with a central gatekeeper located in a DMZ. So for the purposes of firewall configuration, it's an inbound connection that needs to be clearly defined. What is the minimum actual port list that you would recommend for the various parameters? Thanks, Florian. On 04.05.2012, at 17:56, Jan Willamowius wrote: > Hi, > > the only requirement for H.460.19 is the the firewall allows _outgoing_ > connections. If it does, there is no need to open any ports at all. > > If it doesn't, you can use RTP multiplexing and define 2 ports in the > GnuGk config for RTP. For outgoing packets on those ports your firewall > has to open a pinhole. But you still need to configure a PortRange for > Q.931 and H.245 and open the RAS ports. > > Regards, > Jan > > -- > Jan Willamowius, Founder of the GNU Gatekeeper Project > EMail : jan@xxxxxxxxxxxxxx > Website: http://www.gnugk.org > Support: http://www.willamowius.com/gnugk-support.html > > Florian von Kurnatowski wrote: >> Hi, >> >> can anybody quickly tell me what the absolute minimum port requirements for firewall setup are if there is a FW between the endpoint and GnuGK? One Endpoint is a Tandberg C20, the other is a Polycom HDX Codec. >> >> I'd like to avoid port ranges in the configuration, if possible. That should work using H.460.19 RTP Multiplexing, correct? >> >> I previously used a Tandberg VCS expressway with only Tandberg Codecs for the purpose, and could get by with only 5 non-range ports, in Tandberg Assent mode. >> >> Any pointers appreciated, thanks, >> Florian. > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________________ > > Posting: mailto:Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx > Archive: http://sourceforge.net/mailarchive/forum.php?forum_name=openh323gk-users > Unsubscribe: http://lists.sourceforge.net/lists/listinfo/openh323gk-users > Homepage: http://www.gnugk.org/ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________________ Posting: mailto:Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx Archive: http://sourceforge.net/mailarchive/forum.php?forum_name=openh323gk-users Unsubscribe: http://lists.sourceforge.net/lists/listinfo/openh323gk-users Homepage: http://www.gnugk.org/
