Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] MSN messenger with audio behind Hide Nat.

from YAVUZ TEMIZKAN [Permanent Link]
Subject: Re: [FW-1] MSN messenger with audio behind Hide Nat.
From: YAVUZ TEMIZKAN <ytemizkan AT INTELTEK.COM DOT TR>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Tue, 30 Nov 2004 11:19:32 +0200 
You have to establish a point to point connection for msn messenger to work. 
Thats why a static nat works while dynamic (hide) nat doesnt. For audio and 
video conferencing, msn messenger uses ports tcp 1863 and a range between 
4881-4899 (i am not sure you have to check from microsoft technet). The only 
way that this can work behind a dynamic nat may be via port redirect.
Create a new service for tcp 1863 and in the advanced tab you have to add the 
line(in the match field):

SRV_REDIRECT(1863,192.168.1.1,1863) which means redirect
from port 1863 to host 192.168.1.1 port 1863 and no protocol type.

This is not a preferred solution as all the connections coming to the fw's 1863 
port will be redirected to this clients 1863 port and only one client can use 
video conferencing at the same time.



-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT 
AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of CihanS AT GARANTI.COM DOT TR
Sent: 30 Kasım 2004 Salı 08:48
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] MSN messenger with audio behind Hide Nat.


Hi,


Can anybody explain (if there is a way) me how to succeed audio and video 
conference behind a Hide Nat client to to anybody not residing in the same 
Networks, passing through checkpoint? We succeeded only with one-to-one static 
nat...Thanks



***********************************************************
Cihan SUBASI
Garanti Technology
Internet ve Yazilim Hizmetleri
Tel:(90)(212)4783426 GSM:(90)(533)(2750353) Fax:(90)(212)6576150 
http://www.garantitechnology.com <http://www.garantitechnology.com/>

mailto:cihans AT garanti.com DOT tr

Success is a wonderful thing, but never underestimate the value of failure. 
Failure teaches many more things than success ever can.

***********************************************************






This message and attachments are confidential and intended solely for the 
individual(s) stated in this message.If you received this message although you 
are not the addressee you are responsible to keep the message confidential .The 
sender has no responsibility for the accuracy or correctness of the information 
in the message and its attachments.Our company shall have no liability for any 
changes or late receiving,loss of integrity and confidentiality,viruses and any 
damages caused in anyway to your computer system.

Bu mesaj ve ekleri mesajda gonderildigi belirtilen kisi/kisilere ozeldir ve 
gizlidir.Bu mesajin muhatabi olmamaniza ragmen tarafiniza ulasmis olmasi 
halinde mesaj iceriginin gizliligi ve bu gizlilik yukumlulugune uyulmasi 
zorunlulugu tarafiniz icin de soz konusudur.Mesaj ve eklerinde yer alan 
bilgilerin dogrulugu ve guncelligi konusunda gonderenin ya da sirketimizin 
herhangi bir sorumlulugu bulunmamaktadir.Sirketimiz mesajin ve bilgilerinin 
size degisiklige ugrayarak veya gec ulasmasindan, butunlugunun ve gizliliginin 
korunamamasindan, virus icermesinden ve bilgisayar sisteminize verebilecegi 
herhangi bir zarardan sorumlu tutulamaz.

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com 
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [FW-1] Floodgate <--> TCP sequence verifier, Dirk Udo
Next by Date:  [FW-1] Windows 2000, NG, Routing and IP Pool Nat, Neil Kemp
Previous by Thread:  [FW-1] MSN messenger with audio behind Hide Nat., CihanS
Next by Thread:  [FW-1] Floodgate <--> TCP sequence verifier, Dirk Udo
Indexes:  [Date] [Thread] [Top] [All Lists]