Re: Regarding auto configure option in AOL instant messanger.
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Regarding auto configure option in AOL instant messanger.

From: Walter Roberson <roberson@ibd.nrc-cnrc.gc.ca>
Date: Tue Jun 28 2005 - 08:03:02 CEST



In article <1119934751.787413.5350@g49g2000cwa.googlegroups.com>,


 <ravicse04@gmail.com> wrote:


:I want to know one more thing that any othe messanger exist in which we


:don't bother about the configuration of firewall,means it will


:automatically configure according to protocol.



Let us try this again:



1) What exact model and software/firmware release do you have


at the branch office?



2) What exact model and software/firmware release do you have


at your HQ?



3) Which side will initiate the connections?



4) Does the branch office have a fixed IP address? Does the HQ


have a fixed IP address?



5) Is there a VPN (Virtual Private Network) between the two offices?



6) Are there additional offices or remote users involved, not just


the branch office mentioned?



7) Are the firewalls -already- configured to allow connections on the


standard SIP ports (5060) and standard H.323 ports (1720, 1718, 1719)


and standard RTSP ports (554) ?



8) When you speak of not having to configure the firewall, do you mean



a) That you want the H.323 and SIP ports blocked until the


connection should start, with the firewalls preventing the


connection until something happens (such as you starting up the


instant messenger program on the server)?; OR



b) That it is acceptable for the H.323 and SIP ports themselves


to be open to the branch office all the time, but that as the


need arises, the ports that are dynamically negotiated should


be permitted through for the duration of the dynamic connection ?



9) If (8a) is the case, that you want even the possibility of the


connections blocked most of the time, explain the reasons why


you do not want to configure the firewalls to allow the connections


to be negotiated.



If both sides are using Netgear ProSafe VPN devices, then


the only one of them that is documented as supporting UPnP


(Universal Plug and Play) is the FS114. You could try looking


through your configurations anyhow, as I might have missed something


in the documentation. Instructions for setting up UPnP are -probably-


somewhat close to those documented by Microsoft for the Netgear MR814,


http://www.microsoft.com/windowsxp/using/windowsmessenger/expert/netgearmr814.mspx



-- 
   "Mathematics? I speak it like a native."  -- Spike Milligan


Received on Thu Sep 29 19:57:04 2005