Setting Firewall Parameters

TE40, TE50, and TE60 Videoconferencing Endpoint V600R019C00 Web Online Help

Web Online Help

Rate and give feedback:

Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).

Setting Firewall Parameters

Correct firewall settings ensure the security of the video conferences held using your endpoint.

Background

With Network Address Translation (NAT) technology, a device on a local area network (LAN) is allocated a dedicated internal IP address and uses an external IP address to communicate with external devices. If your LAN uses NAT technology, set the IP address of the NAT wide area network (WAN) on your endpoint.

Procedure

Choose System Settings > Network and click the Firewall tab.

Set the firewall parameters listed in Table 3-28.

Table 3-28 Firewall parameters

Parameter	Description	Setting
H.460	Specifies whether H.460 is enabled for traversal between public and private networks. If you set this parameter and Use NAT to Enable, your endpoint will use Huawei's proprietary Super Network Passport (SNP). If you set this parameter to Enable and your endpoint is recognized as a private network endpoint, H.460 will be used for traversal between public and private networks.	The default value is Enable.
Use NAT	Specifies whether NAT is enabled for traversal between public and private networks. An endpoint installed on a private network is considered as a public network endpoint after NAT is enabled on the endpoint. Even if you then enable H.460 on the endpoint, it is still considered as a public network endpoint, and H.460 is not used.	The default value is Disable.
NAT address	Specifies the public IP address for your endpoint. This parameter is required after you set Use NAT to Enable.	No default value is set for this parameter.
RTP across public and private networks	After this service is enabled, the endpoint will send network messages containing local address information to implement RTP code stream exchange under some circumstances.	The default value is Enable.
Local SIP random port	Specifies whether this option is enabled. After it is enabled, the endpoint selects a port that is able to make calls from the available ports in Local SIP TCP port or Local SIP TLS port according to the transmission type during SIP calling.	The default value is Disable.
Local SIP TCP port	Specifies the port for local SIP calling on the endpoint when Transmission type is set to TCP.	The default value is 5080. Value range: 5080-5100
Local SIP TLS port	Specifies the port for local SIP calling on the endpoint when Transmission type is set to TLS.	The default value is 5161. Value range: 5161-5181
H.323 call port	Specifies the port a remote site uses to receive and send call signaling during communication with your site.	The default value is 1720. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
RAS source port	Specifies the port your site uses to receive and send Registration, Admission and Status (RAS) signaling during communication with remote sites.	The default value is 1719. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
RAS destination port	Specifies the port a remote site uses to receive and send RAS signaling during communication with your site.	The default value is 1719. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
SIP call port	Specifies the port your site uses to send Session Initiation Protocol (SIP) signaling during communication with remote sites.	The default value is 5060. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
Local listen port	Specifies the local SIP listening port.	The default value is 5060. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
Server listen port	Specifies the listening port on the SIP server with which your endpoint registers.	The default value is 5060. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333)
SIP TLS call port	Specifies the port your site uses to send SIP signaling during communication with remote sites when Transmission type is set to TLS.	The default value is 5061. Value range: 1025-65534 (excluding 4999, 5000, 5001, and 13333) NOTE: For details about how to set Transmission type, see Setting Server Parameters.
Local SIP TLS listen port	Specifies the local SIP listening port when Transmission type is set to TLS.
SIP server TLS listen port	Specifies the listening port on the SIP server with which your endpoint registers when Transmission type is set to TLS.
Port settings	Specifies the port use. Normal: The number of the port currently in use cannot be changed. Port convergence: The port numbers used in H.323 converge. Specifically, signals of different formats use the same port number. This saves port resources. Same port send/receive: Your endpoint sends and receives data streams through the same port.	The default value is Same port send/receive.
Audio port	Specifies the port your site uses to receive audio packets during communication with remote sites.	The default value is 10002. The value must be an even integer from 10000 to 65534.
Video port	Specifies the port your site uses to receive video packets during communication with remote sites.	The default value is 10004. The value must be an even integer from 10000 to 65534.

Click Save.
The settings take effect immediately.

Translation

简体中文

Download

Updated: 2020-08-18

Document ID: EDOC1100057277

Downloads: 143

Average rating:

This Document Applies to these Products

Enterprise

Huawei Cloud

Carrier

Consumer

Corporate

Web Online Help

Background

Procedure

Related Version

Related Documents