Network World

Weblogs

Search / DocFinder:
Advanced search
Research Centers
Vendor Solutions
Site Resources
Special Issues

Signature SeriesEnterprise All-Stars
Enterprise All-Stars NEW

You in action
You in action

New Data Center The New Data Center: Wireless & Mobility
Wireless & Mobility NEW

The New Data Center: Server Virtualization
Server Virtualization

Search The Multimedia Exchange

Traversing firewalls/NAT


By Jason Meserve, NetworkWorld.com, 02/11/05

It's been a good week for the videoconferencing industry four announcements (Tandberg, Polycom, VisualNexus and Jasomi/Radvision) for systems that deal with the firewall and NAT traversal issue that plagues H.323 IP calls. The main issue with H.323 is that it uses a number of ports to pass calls through the firewall. The ports used can differ from one call to the next, making it difficult for firewalls to handle securely. All the systems funnel the H.323 traffic into set ports, making it more suitable for passing through a firewall or NAT setup.

Leading off, Tandberg launched Expressway, a two-part system the requires an appliance in the DMZ and a software upgrade for the Tandberg MXP line. An MXP endpoint registers with a Border Gateway appliance and the work in-hand to pass traffic through just about any firewall. I can attest to this one. Tandberg gave me a demo of the product here at the NW World HQ, where our firewall is not H.323 friendly. The 1500 MXP they brought in connected to a Border Controller at Tandberg's office in Virginia and we were able to connect to a couple different folks at Tandberg. At our end, all the Tandberg folks did is plug in the device into our network.

Also on Monday, Polycom (Tandberg's chief rival) chimed in with their own firewall solution (coincidence?). The company has been working with Edgewater Networks on a system and the V2IU is the result. It will be Polycom branded and can work with just about any H.323-compliant endpoint. The V2IU sits along side the firewall, acting as a proxy for H.323 traffic. For connections between two locations with firewalls, you'll most likely need a V2IU at both ends, unless you've got an H.323-compatible firewall, such as Cisco's PIX. Polycom says it's taking orders for the V2IU, though a search of the Polycom site only brought up the press release.

VisualNexus' product is said to be similar to the Tandberg offering, according to Andrew Davis in the latest Wainhouse Research Bulletin. VisualNexus' system is dubbed Visual Nexus Secure Transport (VNST) and can pass all H.323 and T.120 traffic through port 80.

Finally, Jasomi and Radvision are working together to make firewall/NAT traversal a non-issue for SIP calls. The companies demonstrated an MCU with firewall traversal capability at this week's VoiceCon show.

SIP may have more features than H.323, but it still prone to the same problems when it comes to ports usage and firewalls. I am waiting for the day when an individual endpoint can call through a firewall securely, without the need for a separate appliance. Unfortunately, Davis says that is against the laws of physics. Polycom says it is working with standards bodies to make changes to the H.323 specification that could someday make it a little less "noisy" for firewalls. Until then, there are a number of new options available for making videoconferencing calls a little more firewall tolerant.

TrackBack
Back to The Multimedia Exchange

Comments

Post a comment

Name:


E-mail address:


URL:


Comments:


Remember info?



TOP STORIES | MOST DUGG STORIES

  1. 10 Microsoft research projects
  2. 10 kitchen gadgets for the geek gourmet
  3. Verizon trounces competition
  4. Smartphone smackdown: Storm vs. iPhone
  5. FBI warns of holiday cyber scams
  6. Cool Yule Tools: 2008 Holiday Gift Guide
  7. Google layoffs: 10,000 jobs being cut
  8. Google Earth used by terrorists in India attacks
  9. Cisco sued over allegedly monopolistic SMARTnet
  10. IBM's 'Next Five in Five' predicts innovations

  11. MOST-WATCHED VIDEO:
    EU gets telecom reform on track

Newsletters
Sign up for one of NWW's Application newsletters.

Web Applications
Network Optimization
Network Systems Management
Network/Systems Management News Alert
View all newsletters

Email Address:

Vendor Solutions

White Papers

Guide to Troubleshooting Application Problems
- Fluke Networks

Monitor the Core and Troubleshoot the Access Layer with Integrated Network Analysis Solutions
- Fluke Networks

Frontline LAN Troubleshooting Guide
- Fluke Networks

More...

Special Report

Mapping a Successful Virtualization Course - American Power Conversion
Managing a newly virtualized environment can be tricky. Effectively deploy this technology with the advice and tips in Network World's latest Executive Guide, "Not Your Father's Virtualization Technology."


Research Centers: Applications | Application Development | Applications-Standards | Applications Vendor Solutions | Collaboration | CRM / ERP | Databases | Directories | Grid Computing | Java | Messaging | .Net | RFID | SOAP | Web Services | XML | Convergence & VoIP | Convergence Regulatory | Convergence Services | Convergence Standards | Convergence VoIP Vendor Solutions | Video | IP PBX | SIP | VoIP | VoIP Services | E-Business | DNS | RFID | Supply Chain | Web security LANs & Routers | Acceleration | Gigabit Ethernet | Lans-Standards | Routers | Wireless LANs | Network Management | Application Management | Desktop Management | Management Test Patch Management | Operating Systems | Linux | NetWare | Unix | Windows Outsourcing | Managed Services | Offshoring Security | Firewalls - VPN - Intrusion | Identity management | Patch Management | Microsoft Security | Privacy | Security Standards | Spam & Phishing | Viruses & worms | Web Security | Wireless Security | Servers & Desktop | Backup-Recovery | DataCenter | Desktops | Desktop Management | Grid | Servers | Server Blades | Servers Desktops | Utility Computing | Small & Medium Business | Broadband | Telework | Handhelds & PDAs | Home Networking | Security | Storage | Compliance | Infiniband | Network-Attached Storage | SANs | Storage Management | Storage Virtualization | Virtualization | Vendor News | Bankruptcy | Earnings | Lawsuits | Layoffs | Standards | Start Ups | Vendor Markets | Education | Financial | Healthcare | HIPAA | Manufacturing | Retail | Wide Area Network | Broadband | Carriers | Frame Relay | Metro Ethernet | MPLS | Service providers | Wireless services | Wireless & Mobile | Wireless LANs | PDAs & handhelds | Wireless Security | Wireless Services | Wireless Standards | Wireless Switches | All Company Profiles