Help with external users connecting thru a PIX firewall
Windows Server Forum Index Windows Server
Server discussion on Windows platform.
 
 FAQFAQ   MemberlistMemberlist     RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
 
Google
 
Web winserverhelp.com
Help with external users connecting thru a PIX firewall

 
Post new topic   Reply to topic    Windows Server Forum Index -> Live Communications Server
Author Message
ccie6679
Guest
Posted: Thu Oct 27, 2005 4:51 pm    Post subject: Help with external users connecting thru a PIX firewall Reply with quote
I have setup LCS 2005 and have it working internally with both TCP and
TLS using certificates. I have configured my PIX firewall to allow
both ports 5060 and 5061. I have also configured the fixup protocol
sip 5060 command on the firewall. Debug of SIP on PIX shows a ton of
SIP traffic, but I am unable to move the SIP connection pass the INIT
stage. Ultimately, the connection fails after it times out. IF I
simply want to allow TCP from the outside, is there any special
configuration I need to do to LCS 2005 ( I have enabled remote users
and changed authenticaiton to NTLM only). Any help would be greatly
appreciated.
Back to top
ccie6679
Guest
Posted: Thu Oct 27, 2005 8:51 pm    Post subject: Re: Help with external users connecting thru a PIX firewall Reply with quote
Nevermind - problem solved. Disabled fixup protocol on PIX and was
able to connect immediately
Back to top
Bob Christian
Guest
Posted: Fri Oct 28, 2005 12:51 am    Post subject: Re: Help with external users connecting thru a PIX firewall Reply with quote
CCIE - The SMTP fixup or a SIP fixup? Curious...well, I am more confused
than curious...

--
Bob Christian II
MVP - LCS
http://bobchristian.blogspot.com - Blog



"ccie6679" <jmills@bellnetworks.com> wrote in message
news:1130434716.166514.137260@g47g2000cwa.googlegroups.com...
Quote:
Nevermind - problem solved. Disabled fixup protocol on PIX and was
able to connect immediately
Back to top
Jeremy Buch
Guest
Posted: Sat Oct 29, 2005 5:59 am    Post subject: Re: Help with external users connecting thru a PIX firewall Reply with quote
If you don't let the PIX think it can muck with SIP traffic coming in for
outside users/servers, it won't fail connections as it gets confused.

In general - don't allow firewalls to act as ALGs and firewalls won't
confuse themselves. I believe this was the issue jmills was having (please
confirm if you would).

--
Jeremy Buch (Microsoft)

This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send email to this address, post a reply to this newsgroup.

"Bob Christian" <BobChristian@removethis.gmail.com> wrote in message
news:uPBTj2z2FHA.3244@tk2msftngp13.phx.gbl...
Quote:
CCIE - The SMTP fixup or a SIP fixup? Curious...well, I am more confused
than curious...

--
Bob Christian II
MVP - LCS
http://bobchristian.blogspot.com - Blog



"ccie6679" <jmills@bellnetworks.com> wrote in message
news:1130434716.166514.137260@g47g2000cwa.googlegroups.com...
Nevermind - problem solved. Disabled fixup protocol on PIX and was
able to connect immediately


Back to top
 
Post new topic   Reply to topic    Windows Server Forum Index -> Live Communications Server All times are GMT
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum




New Topics Powered by phpBB