Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
387
Views
0
Helpful
1
Replies

newbie question

allen.boatright
Level 1
Level 1

‎01-08-2004 05:30 AM - edited ‎03-17-2019 08:09 PM

Cisco PIX 515 version 6.3(3)

We have a hearing impaired employee who requires a VRS. The port requirements for communication are:

IN: 1720 TCP, 15328-15333 TCP/UDP

OUT: 1024-65535 TCP/UDP, 21, 389

I can't get this thing to work. I'm scratching my head trying to figure out how to do this. They are able to get out (the people on the other end can see us) but communication cannot find its way back in (we cannot see them).

Here is what the firewall is throwing back:

%PIX-2-106001: Inbound TCP connection denied from (outside ip address)/1720 to (our outside global address)/63666 flags RST ACK on interface outside

%PIX-3-106011: Deny inbound (No xlate) udp src outside:(outside ip address)/15332 dst outside:(our outside global address)/15332

I have this so far:

outbound 1 deny 0.0.0.0 0.0.0.0 0 ip

outbound 1 except (inside VRS camera IP) 255.255.255.255 0 tcp

outbound 1 except (inside VRS camera IP) 255.255.255.255 0 udp

apply 1 outgoing_dest

I've tried various commands to get the communication coming in. I won't bother posting that since it obviously doesn't work. I would like for those ports to only be open to the VRS camera device. Can anyone help me out with this please? They are waiting on me.

Labels:
0 Helpful
1 Reply 1

sachon
Level 1
Level 1

‎01-12-2004 05:41 AM

Your firewall is clearly blocking the return path. Rather than explain how to fix this in a lengthy email, I will forward you a whitepaper that explains overcming firewalls and video conferencing...

0 Helpful
Customers Also Viewed These Support Documents