SVRS Sorenson Firewall Traversal Solution Sorenson Communications now offers a complete, cost-effective solution to the complex technical problems inherent in the use of videophone devices behind corporate or institutional firewalls. Sorenson's Firewall Traversal solution supports the SIP protocol used to transmit data between videophones devices. Big Advantages Small Requirements Sorenson's Firewall Traversal solution offers ‘Sorenson's Firewall Traversal solution offers big advantages to managers of corporate and proven, cost-effective technology designed institutional IT departments who must cope specifically for the corporate and institutional with the competition between need for network environments, The solution requires no extra security and demands from end users for full hardware and only minimal firewall configuration videoconferencing support. Here are some work is needed in most situations. Here are the important details: basic Firewall Solution setup steps: ‘wall traversal technology is based on + Contact Sorenson to arrange to enable the industry-standard ICE (RFC 5245) protocol Firewall Traversal solution on your network + Automatic creation of the temporary firewall Install and connect Sorenson ntouch® pinholes needed to support videophone videophone endpoint devices to corporate/ multimedia traffic institutional network via Ethernet + Multiple videophones can “find” eachother + —_ Configure the videophone devices to use by phone number, not IP address, when both DHCP to obtain their IP addresses from the are behind a firewall corporate server + Prevents excess outbound traffic and + Test outbound and inbound calls and internal bandwidth use by letting videophones inside (videophone-to-videophone) calls the network connect directly + Eliminates the need for manual NAT “fixups” or other manual workarounds + Eliminates the security risks and costs associated with using dedicated Public IP J addresses for each videophoneRobust Technology Sorenson Firewall Traversal Requirements Sorenson's Firewall Traversal solution uses the ICE. (RFC 5245) protocol to make SIP calls. Corporate firewalls are sometimes configured to use inspection rules for SIP traffic which may create a conflict with Sorenson's SIP/ICE protocol. The SIP inspection rules issue can be easily addressed by adding the range of Sorenson subnets to the firewall’s “White List The Sorenson subnets to add to the White List are listed to the right: notes ‘Global SIP Inspection may need tobe dsabledin the Fewall because the use of global ules can interfere with Sorenson calls. needed, user-created inspection rules canbe used because they donot attempt to change data packets. + fa Content fier or Proxy server is being used ona network, the Sorenson Enterprise Domain servers must be added tothe Content fiter or Prowy server's low List” Depending on thelr configuration, Content fiers or Proxy servers can interfere with videophone useby filtering or denying afc completely orby preventing the videophones from registering themselves with Sorenson's servers. 6537.2490/24 80, 43,3478, 560, 5061, 50060 (TCP/UDP) 6537:2530/24 21,80, 443,478, $060, $061, $0060 (TCP/UDP) 209,168.233.0/24 80, 43,3478, 5060, 5061, 50060 (TCP/UDP) 208,168.236.0/24 80, 43,3478, 5060, 5061, 50060 (TCP/UDP) 208,168.238.0/24 80, 43,3478, 5060, 5061, 50060 (TCP/UDP) 209,169,242.0/24 0, 43,2478, 5060, 5061, 50060 (TCP/UDP) 209,169,253.0/24 80,43, 3478, 5060, 5061, 50060 (TCP/UDP) The symptoms tothe ight occur a misconfigured Content/Proxy fier blacks traffic an Ports 0.0" thus preventing the videophone from connecting to Sorenson's servers: + Videophone cannot register with Sorenson servers when firstinetaled ideophone shows 2 “back vdeo screen” eventhough incoming ports ere open Videophone cannot receive or play SignMall videos Videophone cannot get online eventhough IP information Sorenson's fllline of ntouch® videophone and endpoint devices support ou Firwal Traversal solution, For more information o help geting stated, please contact Sorenson's Technical Support team by email at BusinessHelp@Sorensoncom or by telephone a (844) 6569