Arcus Skrevet 21. april 2010 Del Skrevet 21. april 2010 (endret) Holder på å sette opp en ny router på et lite bedriftsnett. Routeren er en D-Link DLF-210 , oppgradert til siste firmware. Router er konfigurert opp , og fungerer ok. Satt opp en del regler og alle tjenestene (WWW, FTP m.m) fungerer foruten videokonferansesystem fra tandberg som jeg ikke får til å fungere 100% Motparten ser og hører meg , men jeg har sort skjerm og hører ikke mottparten. Porter utstyret krever : 1719 UDP 1720 TCP 5555 - 5574 TCP 2326 - 2485 UDP Noen som klarer å se hva jeg har gjort feil ? Her er regelsettet og info jeg har lagt inn i routeren : Interface Addresses : Videokonf - 192.168.1.99 wan_ip = IP fra levrandør Services : H245 TCP/UDP 53523,5555-5574 h323 TCP 1720 H323 H.323 via H323 ALG - Enables H.323 communication h323-gatekeeper UDP 1719 H323 H.323 RAS via H323 ALG - Enables communication with H.323 Gatekeepers Vid_Aud_DATA_videokof TCP/UDP 2326-2485 Porter for audio , video og data/FECC for videokonferansesystemet IP Rules # Name Action Source interface Source network Destination interface Destination network Service 1 Gatekeeper_Discovery SAT any all-nets core wan_ip h323-gatekeeper 2 Gatekeeper_Discovery_2 Allow any all-nets core wan_ip h323-gatekeeper 3 Q931_Call_Setup SAT any all-nets core wan_ip h323 4 Q931_Call_Setup_2 Allow any all-nets core wan_ip h323 5 Vid_Aud_Data SAT any all-nets core wan_ip Vid_Aud_DATA_videokof 6 Vid_Aud_Data_2 Allow any all-nets core wan_ip Vid_Aud_DATA_videokof 7 H245 SAT any all-nets core wan_ip H245 8 H245_2 Allow any all-nets core wan_ip H245 Regel 1 : Gatekeeper_Discovery General Name : Gatekeeper_Discovery Action : SAT Service : h323-gatekeeper Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip SAT Translate the destination ip to new ip adress = Videokonf All-to_one mapping : rewrite all destination IPs to single IP = haket ut. ----------------------------------------------------------------------------------------------------------------------- Regel 2 : Gatekeeper_Discovery_2 General Name : Gatekeeper_Discovery_2 Action : Allow Service : h323-gatekeeper Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip ----------------------------------------------------------------------------------------------------------------------- Regel 3 : Q931_Call_Setup General Name : Q931_Call_Setup Action : SAT Service : h323 Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip SAT Translate the destination ip to new ip adress = Videokonf All-to_one mapping : rewrite all destination IPs to single IP = haket ut. ----------------------------------------------------------------------------------------------------------------------- Regel 4 : Q931_Call_Setup_2 General Name : Q931_Call_Setup_2 Action : Allow Service : h323 Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip ----------------------------------------------------------------------------------------------------------------------- Regel 5 : Vid_Aud_Data General Name : Vid_Aud_Data Action : SAT Service : Vid_Aud_DATA_videokof Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip SAT Translate the destination ip to new ip adress = Videokonf All-to_one mapping : rewrite all destination IPs to single IP = haket ut. ----------------------------------------------------------------------------------------------------------------------- Regel 6 : Vid_Aud_Data_2 General Name : Vid_Aud_Data_2 Action : Allow Service : Vid_Aud_DATA_videokof Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip ----------------------------------------------------------------------------------------------------------------------- Regel 7 : H245 General Name : H245 Action : SAT Service : H245 Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip SAT Translate the destination ip to new ip adress = Videokonf All-to_one mapping : rewrite all destination IPs to single IP = haket ut. ----------------------------------------------------------------------------------------------------------------------- Regel 8: H245_2 General Name : H245_2 Action : Allow Service : H245 Schedule : none Address Filter Source Destination Interface : any core Network : all-nets wan_ip --------------------------------------------------------------------------------------------------------------------- Endret 21. april 2010 av Arcus Lenke til kommentar
Ruff Skrevet 22. april 2010 Del Skrevet 22. april 2010 Finnes det noe Inspection av pakker på brannmuren? Sjekk at ikke H.323 ligger der. Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå