Sign in
Microsoft.com
 
Microsoft
 
 
 

locked
ISA / Other Firewals - How to Open P2P and P2Server Connections? (Without security issues) / Edge RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi all,

     

    I`ve problems to communicate internal with external users.

     

    As you know, OCS / Live Meeting use 1024 to 65535 range port  for Streaming (UDP/TCP).

     

    Is there any way to "secure" this connection with a kind of conditional that only clients who already open a 5061 TCP (TLS) connection is allowed to traffic internal to external and external to internal 1024 to 65535 ports?

     

    Customizing is not an option. Many Windows Vista has "Audio not cofigured" error after enable "PortRange" in Registry.

     

    Regards,

     

    Thursday, January 17, 2008 12:35 AM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    This solve the issue:

     

     

    From Internet To Edge Server

    Port 443 (SIP/TLS) – Inbound

    *Port 5061 (SIP/MTLS) – Inbound and Outbound (only required with Federation Services)

     

    from LAN to o Edge Server

    Port 5061 (SIP/MTLS) – Inbound and Outbound

     

     

    from Internet To Edge Server

    Port 443 (STUN/TCP) – Inbound

    Ports5 0.000 to 59.999 (RTP/TCP) – Inbound and Outbound

    Port 3478 (STUN/UDP) - Inbound

    Ports 50.000 to 59.999 (RTP/UDP) – Inbound and Outbound

     

    from LAN To Edge Server

    Port 443 (STUN/TCP) – Inbound

    Port 5062 (SIP/MTLS) – Inbound

    Port 3478 (STUN/UDP) - Inbound

     

     

     

     

    Friday, January 18, 2008 2:35 PM