166
D14049.05
February 2009
Grey Headline
(continued)
TANDBERG
VIDEO COMMUNICATIONS SERVER
ADMINISTRATOR GUIDE
Introduction
Getting started
Overview and
status
System
configuration
VCS
configuration
Zones and
neighbors
Call
processing
Bandwidth
control
Firewall
traversal
Appendices
Applications
Maintenance
Tools
Port usage
Overview
The pages under the
Maintenance > Tools >
Port usage
menu show, in table format, all
the IP ports that have been configured on the
VCS. The information shown on these pages
is specific to that particular VCS and will vary
depending on the VCS's configuration, the
option keys that have been installed and the
features that have been enabled.
The information can be copied from these
pages and pasted directly into a text editor or
Excel spreadsheet for forwarding on to your
Firewall Administrator or other IT personnel.
The information can be sorted according to any
of the columns on the page, so for example you
can sort the list by IP port, or by IP address.
IP ports cannot be configured separately
for IPv4 and IPv6 addresses, nor for
each of the two LAN interfaces - in other
words, once an IP port has been configured for a
particular service, e.g. SIP UDP, this will apply to
all IP addresses of that service on the VCS.
Because the tables on these pages list all
IP ports and all IP addresses, a single IP port
may appear on the list up to 4 times, depending
on your VCS configuration.
The port information is split into three pages,
each described in the sections that follow.
Local VCS inbound ports
This page shows the listening ports on this
VCS. These are the IP ports on the VCS used
to receive inbound communications from other
systems.
For each port listed on this page, if there is a
firewall between the VCS and the source of the
inbound communications, your firewall must
allow:
inbound traffic to the IP port on the VCS from
•
the source of the inbound communications,
and
return traffic from that same VCS IP port
•
back out to the source of the inbound
communication.
This firewall configuration is particularly
important if this VCS is a traversal client
or traversal server, in order for
Expressway firewall traversal to function
correctly. See the section
About Expressway
for
more information.
Local VCS outbound ports
This page shows the source IP ports used by
this VCS. These are the IP ports on the VCS
used to send outbound communications to
other systems.
For each port listed on this page, if there is a
firewall between the VCS and the destination
of the outbound communications, your firewall
must allow:
outbound traffic out from the IP port on
•
the VCS to the destination of the outbound
communications, and
return traffic from that destination back to
•
the same VCS IP port.
This firewall configuration is particularly
important if this VCS is a traversal client
or traversal server, in order for
Expressway firewall traversal to function
correctly. See the section
About Expressway
for
more information.
Remote listening ports
This page shows the destination IP addresses
and IP ports of remote systems with which the
VCS communicates.
Your firewall must be configured to allow traffic
originating from the local VCS to the remote
devices identified by the IP addresses and IP
ports listed on this page.
There are other remote devices not
listed here to which the VCS will be
sending media and signaling, but the
ports on which these devices receive traffic
from the VCS is determined by the configuration
of the destination device, so they cannot be
listed here. If you have opened all the ports
listed in the
Local outbound ports
page, the VCS
will be able to communicate with all remote
devices. You only need to use the information
on this page if you wish to limit the IP ports
opened on your firewall to these remote systems
and ports.
