Problems with Tandberg IP conferencing
Last response: in Networking
Archived from groups: comp.dcom.videoconf (More info?)
We are having major problems establishing IP videoconference on a
Tandberg 800 system. We can NetMeeting to<>from external but cannot
establish an IP call to a 'real' videoconferencing system.
Firewall is SEF - rules appear to have been setup apropriately - call
arrives on the Tandberg but does not get back out through the
Firewall. NAT is in use at the Firewall but not on the Tandberg itself
- allowing the Firewall to handle this.
Is there anyone out there who has had a similar problem with this
combination? We have even opened up the Firewall rules for the
Tandberg (temporarily) but still cannot communicate.
I have emailed Tandberg but as yet have had no response.
ISDN works fine.
I would welcome any advice....
Thanks in advance.
LC
We are having major problems establishing IP videoconference on a
Tandberg 800 system. We can NetMeeting to<>from external but cannot
establish an IP call to a 'real' videoconferencing system.
Firewall is SEF - rules appear to have been setup apropriately - call
arrives on the Tandberg but does not get back out through the
Firewall. NAT is in use at the Firewall but not on the Tandberg itself
- allowing the Firewall to handle this.
Is there anyone out there who has had a similar problem with this
combination? We have even opened up the Firewall rules for the
Tandberg (temporarily) but still cannot communicate.
I have emailed Tandberg but as yet have had no response.
ISDN works fine.
I would welcome any advice....
Thanks in advance.
LC
More about : problems tandberg conferencing
Archived from groups: comp.dcom.videoconf (More info?)
LC,
Tandberg tech support is usually pathetic and very arrogant.
What ports did you open and what firewall rules did you set?
Also what is 'Firewall SEF', which brand of firewall are you using.
RS
On 27 Apr 2004 08:44:11 -0700, lesley.chaddock@biwater.com (LC) wrote:
>We are having major problems establishing IP videoconference on a
>Tandberg 800 system. We can NetMeeting to<>from external but cannot
>establish an IP call to a 'real' videoconferencing system.
>
>Firewall is SEF - rules appear to have been setup apropriately - call
>arrives on the Tandberg but does not get back out through the
>Firewall. NAT is in use at the Firewall but not on the Tandberg itself
>- allowing the Firewall to handle this.
>
>Is there anyone out there who has had a similar problem with this
>combination? We have even opened up the Firewall rules for the
>Tandberg (temporarily) but still cannot communicate.
>
>I have emailed Tandberg but as yet have had no response.
>
>ISDN works fine.
>
>I would welcome any advice....
>
>Thanks in advance.
>
>LC
LC,
Tandberg tech support is usually pathetic and very arrogant.
What ports did you open and what firewall rules did you set?
Also what is 'Firewall SEF', which brand of firewall are you using.
RS
On 27 Apr 2004 08:44:11 -0700, lesley.chaddock@biwater.com (LC) wrote:
>We are having major problems establishing IP videoconference on a
>Tandberg 800 system. We can NetMeeting to<>from external but cannot
>establish an IP call to a 'real' videoconferencing system.
>
>Firewall is SEF - rules appear to have been setup apropriately - call
>arrives on the Tandberg but does not get back out through the
>Firewall. NAT is in use at the Firewall but not on the Tandberg itself
>- allowing the Firewall to handle this.
>
>Is there anyone out there who has had a similar problem with this
>combination? We have even opened up the Firewall rules for the
>Tandberg (temporarily) but still cannot communicate.
>
>I have emailed Tandberg but as yet have had no response.
>
>ISDN works fine.
>
>I would welcome any advice....
>
>Thanks in advance.
>
>LC
Archived from groups: comp.dcom.videoconf (More info?)
Hi RS
SEF = Symantec EnterPrise FireWall
The specific Inbound and Outbound rules are as follows:
Rule ID: xx
Description: VC Inbound
Access Mode:
Allow Services: H245 h323 h323* telnet*
Service Limits: telnet h323 5555-5560/udp 1720/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: int-external
Out Via: int-internal.new
Source: Universe*
Destination: host-tandburg-n.n.n.n
Time: Authentication: User: User: Group: Group: Alert 5 minutes
threshold: Alert 15 minutes threshold: Alert Hour threshold: Alert
Day threshold: Alert Week threshold: Log Normal Activity:
1 Application Data Scanning: 1
Rule ID: xx
Description: VC Outbound
Access Mode:
Allow Services: H245 h323 h323* VC_UDP
Service Limits: h323 5555-5560/udp 1720/tcp 2326-2375/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: int-internal.new
Out Via: int-external
Source: host-tandburg-n.n.n.n
Destination: Universe* Time: Authentication: User: User: Group:
Group: Alert 5 minutes threshold: Alert 15 minutes threshold:
Alert Hour threshold: Alert Day threshold: Alert Week threshold:
Log Normal Activity: 1 Application Data Scanning: 1
We were also advised by Symantec to disable the H323 proxy...
Does this enlighten any?
Thanks
LC
ArthurLange <artielange@cox.net> wrote in message news:<fit0909nlj5kt363ugepbmavfg2ifg7u9g@4ax.com>...
> LC,
> Tandberg tech support is usually pathetic and very arrogant.
> What ports did you open and what firewall rules did you set?
> Also what is 'Firewall SEF', which brand of firewall are you using.
>
> RS
>
Hi RS
SEF = Symantec EnterPrise FireWall
The specific Inbound and Outbound rules are as follows:
Rule ID: xx
Description: VC Inbound
Access Mode:
Allow Services: H245 h323 h323* telnet*
Service Limits: telnet h323 5555-5560/udp 1720/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: int-external
Out Via: int-internal.new
Source: Universe*
Destination: host-tandburg-n.n.n.n
Time: Authentication: User: User: Group: Group: Alert 5 minutes
threshold: Alert 15 minutes threshold: Alert Hour threshold: Alert
Day threshold: Alert Week threshold: Log Normal Activity:
1 Application Data Scanning: 1
Rule ID: xx
Description: VC Outbound
Access Mode:
Allow Services: H245 h323 h323* VC_UDP
Service Limits: h323 5555-5560/udp 1720/tcp 2326-2375/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: int-internal.new
Out Via: int-external
Source: host-tandburg-n.n.n.n
Destination: Universe* Time: Authentication: User: User: Group:
Group: Alert 5 minutes threshold: Alert 15 minutes threshold:
Alert Hour threshold: Alert Day threshold: Alert Week threshold:
Log Normal Activity: 1 Application Data Scanning: 1
We were also advised by Symantec to disable the H323 proxy...
Does this enlighten any?
Thanks
LC
ArthurLange <artielange@cox.net> wrote in message news:<fit0909nlj5kt363ugepbmavfg2ifg7u9g@4ax.com>...
> LC,
> Tandberg tech support is usually pathetic and very arrogant.
> What ports did you open and what firewall rules did you set?
> Also what is 'Firewall SEF', which brand of firewall are you using.
>
> RS
>
Archived from groups: comp.dcom.videoconf (More info?)
Just about every video conferencing system on the market uses different
layer 4 ports. Most H323 aware firewalls are behind in the stack versions
being used by the popular VTC systems on the market
Tandberg has a document that will specify ports etc. to open. Ask them for
it.
"LC" <lesley.chaddock@biwater.com> wrote in message
news:5e3eba6.0404270744.50691a3f@posting.google.com...
> We are having major problems establishing IP videoconference on a
> Tandberg 800 system. We can NetMeeting to<>from external but cannot
> establish an IP call to a 'real' videoconferencing system.
>
> Firewall is SEF - rules appear to have been setup apropriately - call
> arrives on the Tandberg but does not get back out through the
> Firewall. NAT is in use at the Firewall but not on the Tandberg itself
> - allowing the Firewall to handle this.
>
> Is there anyone out there who has had a similar problem with this
> combination? We have even opened up the Firewall rules for the
> Tandberg (temporarily) but still cannot communicate.
>
> I have emailed Tandberg but as yet have had no response.
>
> ISDN works fine.
>
> I would welcome any advice....
>
> Thanks in advance.
>
> LC
Just about every video conferencing system on the market uses different
layer 4 ports. Most H323 aware firewalls are behind in the stack versions
being used by the popular VTC systems on the market
Tandberg has a document that will specify ports etc. to open. Ask them for
it.
"LC" <lesley.chaddock@biwater.com> wrote in message
news:5e3eba6.0404270744.50691a3f@posting.google.com...
> We are having major problems establishing IP videoconference on a
> Tandberg 800 system. We can NetMeeting to<>from external but cannot
> establish an IP call to a 'real' videoconferencing system.
>
> Firewall is SEF - rules appear to have been setup apropriately - call
> arrives on the Tandberg but does not get back out through the
> Firewall. NAT is in use at the Firewall but not on the Tandberg itself
> - allowing the Firewall to handle this.
>
> Is there anyone out there who has had a similar problem with this
> combination? We have even opened up the Firewall rules for the
> Tandberg (temporarily) but still cannot communicate.
>
> I have emailed Tandberg but as yet have had no response.
>
> ISDN works fine.
>
> I would welcome any advice....
>
> Thanks in advance.
>
> LC
Archived from groups: comp.dcom.videoconf (More info?)
"LC" <lesley.chaddock@biwater.com> wrote in message
news:5e3eba6.0404300831.1a48bb57@posting.google.com...
> Hi RS
>
> SEF = Symantec EnterPrise FireWall
>
> The specific Inbound and Outbound rules are as follows:
> Rule ID: xx
> Description: VC Inbound
> Access Mode:
> Allow Services: H245 h323 h323* telnet*
> Service Limits: telnet h323 5555-5560/udp 1720/tcp
> Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
> Advanced Services:
> Application Scanning: 1
> In Via: int-external
> Out Via: int-internal.new
> Source: Universe*
> Destination: host-tandburg-n.n.n.n
> Time: Authentication: User: User: Group: Group: Alert 5 minutes
> threshold: Alert 15 minutes threshold: Alert Hour threshold: Alert
> Day threshold: Alert Week threshold: Log Normal Activity:
> 1 Application Data Scanning: 1
>
> Rule ID: xx
> Description: VC Outbound
> Access Mode:
> Allow Services: H245 h323 h323* VC_UDP
> Service Limits: h323 5555-5560/udp 1720/tcp 2326-2375/udp
> Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
> Advanced Services:
> Application Scanning: 1
> In Via: int-internal.new
> Out Via: int-external
> Source: host-tandburg-n.n.n.n
> Destination: Universe* Time: Authentication: User: User: Group:
> Group: Alert 5 minutes threshold: Alert 15 minutes threshold:
> Alert Hour threshold: Alert Day threshold: Alert Week threshold:
> Log Normal Activity: 1 Application Data Scanning: 1
1) Upgrade Tandberg to latest release E3.2
2) Switch on NAT awareness in the Tandberg. Terminal settings>LAN>Advanced
AFAICR
3) Test
If you still get no joy then do this:
> We were also advised by Symantec to disable the H323 proxy...
>
> Does this enlighten any?
Remember these three things:
a) NAT is evil
b) NAT is evil, and
c) NAT is evil
Most likely the NAT prozy is translating the IP address in the header but
the h323 aware proxy is not changing in in the application layer.
If none of the above works then use the DMZ port on your firewall and make
sure there is not evil NAT on that port, i.e. you using a public IP.
And then speak to your vendor.
> Thanks
> LC
-=-peas-=-
"LC" <lesley.chaddock@biwater.com> wrote in message
news:5e3eba6.0404300831.1a48bb57@posting.google.com...
> Hi RS
>
> SEF = Symantec EnterPrise FireWall
>
> The specific Inbound and Outbound rules are as follows:
> Rule ID: xx
> Description: VC Inbound
> Access Mode:
> Allow Services: H245 h323 h323* telnet*
> Service Limits: telnet h323 5555-5560/udp 1720/tcp
> Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
> Advanced Services:
> Application Scanning: 1
> In Via: int-external
> Out Via: int-internal.new
> Source: Universe*
> Destination: host-tandburg-n.n.n.n
> Time: Authentication: User: User: Group: Group: Alert 5 minutes
> threshold: Alert 15 minutes threshold: Alert Hour threshold: Alert
> Day threshold: Alert Week threshold: Log Normal Activity:
> 1 Application Data Scanning: 1
>
> Rule ID: xx
> Description: VC Outbound
> Access Mode:
> Allow Services: H245 h323 h323* VC_UDP
> Service Limits: h323 5555-5560/udp 1720/tcp 2326-2375/udp
> Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
> Advanced Services:
> Application Scanning: 1
> In Via: int-internal.new
> Out Via: int-external
> Source: host-tandburg-n.n.n.n
> Destination: Universe* Time: Authentication: User: User: Group:
> Group: Alert 5 minutes threshold: Alert 15 minutes threshold:
> Alert Hour threshold: Alert Day threshold: Alert Week threshold:
> Log Normal Activity: 1 Application Data Scanning: 1
1) Upgrade Tandberg to latest release E3.2
2) Switch on NAT awareness in the Tandberg. Terminal settings>LAN>Advanced
AFAICR
3) Test
If you still get no joy then do this:
> We were also advised by Symantec to disable the H323 proxy...
>
> Does this enlighten any?
Remember these three things:
a) NAT is evil
b) NAT is evil, and
c) NAT is evil
Most likely the NAT prozy is translating the IP address in the header but
the h323 aware proxy is not changing in in the application layer.
If none of the above works then use the DMZ port on your firewall and make
sure there is not evil NAT on that port, i.e. you using a public IP.
And then speak to your vendor.
> Thanks
> LC
-=-peas-=-
Archived from groups: comp.dcom.videoconf (More info?)
Sounds to me like you need another solution. We use and reccommend a
software solution that is literally plug and play. have a look at
www.whisperit.com/emeetings
Sounds to me like you need another solution. We use and reccommend a
software solution that is literally plug and play. have a look at
www.whisperit.com/emeetings
Related ressources:
- ForumVideo conferencing devices compatibility
- ForumWhat Video Conferencing is Right
- ForumVideo Teleconference Position in Washington DC Area
- Forumvoice/video conferencing
- ForumHow to Troubleshoot Google Chrome Crashes
- ForumWindows messenger audio/video problems
- ForumD-link DVC-1000 or Polycom ViaVideo II ?
- ForumBilling a IP based video conference call
- ForumQuestions about VoIP and VoIP-PBX
- ForumWhich PBX to choose? Avaya or Cisco?
- ForumI want that late 60's-early 70's sound.
- ForumIs half track stereo head mod possible for TEAC 3340S?
- ForumIf 44.1 digital is imperfect, are audio engineers doomed t..
- ForumWhat's wrong with these heads ???
- Forumaudio standards
- ForumReel to reel plays backwards
- ForumFrom 1 to 5 public IPs, what do I do now?
- ForumRouter Setup
- ForumHelp with setting up a NAT/Firewall to route at my office.
- ForumSeeking help with multiple router setup
- More resources
Read discussions in other Networking categories
!
