Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
VoIP / Vonage?
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
VoIP / Vonage? - 26.Jul.2004 4:26:00 PM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
Hi,
ISA 2000 did not support VoIP. Anyone know if VoIP is supported on ISA 2004?
If so, is there a step-by-step guide somewhere?
Thanks,
-
Robert
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 5:04:00 PM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Robert,
If it uses SIP, it won't work.
HTH,
Tom
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 5:35:00 PM
|
|
|
telech
Posts: 36
Joined: 14.May2004
From: Pittsburgh
Status: offline
|
Well, Vonage mentions this in their knowledge base:
"Short for Session Initiation Protocol, a signaling protocol for Internet conferencing, telephony, events notification and instant messaging. The protocol initiates call setup, routing, authentication to endpoints within an IP domain."
So I assume this is to say that their service does indeed rely on sip. I was actually about to post a question about the same thing when I noticed this topic :b
I still intend to have us behind ISA, and I still intend to move to VoIP with Vonage. But I guess in light of this, I'll just have to plug a switch full of phone lines into a port on our broadband router next to the one that goes to the switch ISA's on. That way ISA hopefully won't bother our phone service.
Why, by the way, Doc, won't sip work behind ISA? I'd think it would support that, given all the other stuff that works with it.
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 5:40:00 PM
|
|
|
telech
Posts: 36
Joined: 14.May2004
From: Pittsburgh
Status: offline
|
This is in the KB there too, btw. Maybe it's helpful to some extent.
How do I use the Phone Adapter behind a Firewall?
--------------------------------------------------------------------------------
Vonage Service through a Firewall
A firewall is system designed to block unwanted network traffic going in and/or out of your home or office network. Some popular brand routers have firewall options built in. If your network is connecting through a firewall, or a router with firewall capabilities, it may interfere with the Phone Adapters service. If you experience any problems with your Vonage service, and are connecting through a firewall, be sure the following ports are allowed to and from the phone adapter.
Phone Adapters Internet ports:
SIP ports 5060 through 5061 using UDP protocol
NTP port 123 using UDP protocol
TFTP port 69 using UDP protocol
DNS port 53 using UDP protocol
RTP ports 10,000 through 20,000 using UDP protocol
Since each firewall may be designed differently, please consult firewall owners manual for further information.
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 8:51:00 PM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
Vonage is SIP based, so I guess I'm screwed.
Seems odd that some cheap firewall like Netgear would work. Is there hope for SIP support?
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 9:28:00 PM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
Halleluiah!
I got it to work!
I used the pre-defined NTP (UDP) port.
I opened the ports above, except the RTP protocal, extended the range to 40,000.
Thanks,
-
Robert
|
|
|
|
|
RE: VoIP / Vonage? - 26.Jul.2004 11:45:00 PM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Robert,
When you say you "opened the ports" what were the access rules you created?
Did you server publish the phone?
Thanks!
Tom
|
|
|
|
|
RE: VoIP / Vonage? - 27.Jul.2004 1:14:00 AM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
Hi Tom,
I did not publish the phone. I created these protocols:
"RTP" (What I names the protocol)
Port Range 10000-40000, UDP Send / Receive
Secondary 10000-40000, UDP Receive.
"SIP"
Port Range 5060-5061, UDP Send / Receive
Secondary 5060-5061, UDP, Receive
And this Access Rule:
NTP (UDP), RTP, SIP, TFTP
From External, Internal
To External, Internal
All Users
-
Robert
|
|
|
|
|
RE: VoIP / Vonage? - 27.Jul.2004 4:11:00 AM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Robert,
That's GREAT!
Thanks for the info!
Tom
|
|
|
|
|
RE: VoIP / Vonage? - 28.Jul.2004 2:51:00 AM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
I opened this up for testiung. I changed the rule to:
From: internal, To: external.
Have at it.
|
|
|
|
|
RE: VoIP / Vonage? - 28.Jul.2004 4:07:00 PM
|
|
|
telech
Posts: 36
Joined: 14.May2004
From: Pittsburgh
Status: offline
|
Awesome. Phew - glad to know I'm not going to have a whole other line of bull to take care of when we make the switches to ISA and Vonage here. I thought for a minute I'd need to put all of the phones on another routher port through their own router for a minute there :b That would've been weak.
So - you only need the rule you defined there to go from internal to external? Vonage doesn't require any access from external to internal? Each of the analog-ethernet converters has its own IP and such, right? I would've thought you'd have to allow some sort of access from the outside world to the converters or IP phones for it to work.
|
|
|
|
|
RE: VoIP / Vonage? - 29.Jul.2004 4:09:00 PM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
I have only opened outgoing ports. But I haven't tried calling the phone, seems that some external to internal port would be required. I'll try it.
The Vonage phones require their IP assigned by DHCP, (last time I checked with Vonage) which will complicate things if I have to open an incoming port. Would be nice to restrict it to the netblock of the phones.
I'll be out for a few days, but will let you know if incoming calls are working.
|
|
|
|
|
RE: VoIP / Vonage? - 30.Jul.2004 3:36:00 PM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Rz,
I suspect that there would be a Publishing Rule required here somewhere. What's really required is a SIP ALG similar to the H.323 Gatekeeper, so that the ISA firewall can perform call management.
Thanks!
Tom
|
|
|
|
|
RE: VoIP / Vonage? - 31.Jul.2004 1:02:00 AM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
quote:
Originally posted by tshinder:
Hi Rz,
I suspect that there would be a Publishing Rule required here somewhere. What's really required is a SIP ALG similar to the H.323 Gatekeeper, so that the ISA firewall can perform call management.
Thanks!
Tom
One would think. I tried calling the phone, everything works. I have no incoming ports enabled. I only have one VoIP phone connected behind ISA. Monday I'll connect a second and see what happens.
-
Robert
|
|
|
|
RE: VoIP / Vonage? - 31.Jul.2004 2:44:00 PM
|
|
|
rpotthoff
Posts: 8
Joined: 12.Aug.2003
Status: offline
|
Question?
I use Vonage and from what I see in the user guide, the vonage modem is to be first inline (i.e. broadband, vonage, router/firewall). the modem can be setup to passthrough the broadband signal. and this is the preffered setup. what am I missing here? I don't mean to be a pain but why would you need to be behide ISA, this could fill the cache quickly and slow ISA down. Sorry just ad to ask.
|
|
|
|
|
RE: VoIP / Vonage? - 1.Aug.2004 6:24:00 PM
|
|
|
rz
Posts: 36
Joined: 4.Dec.2003
Status: offline
|
quote:
Originally posted by rpotthoff:
Question?
I use Vonage and from what I see in the user guide, the vonage modem is to be first inline (i.e. broadband, vonage, router/firewall). the modem can be setup to passthrough the broadband signal. and this is the preffered setup. what am I missing here? I don't mean to be a pain but why would you need to be behide ISA, this could fill the cache quickly and slow ISA down. Sorry just ad to ask.
We have a network behind ISA. How would I connect the Vonage phones to the internet without going through ISA and still have that network secure?
|
|
|
|
|
RE: VoIP / Vonage? - 2.Aug.2004 4:31:00 PM
|
|
|
willabr
Posts: 16
Joined: 19.Jan.2003
From: USA
Status: offline
|
I have vonage using ISA2004 Standard and a Motorola ATA
Here is what I've done, works for both incoming and outgoing calls
* Setup the modem with a fixed IP address in the LAN range (see vonage installation manual).
* In ISA2004 create a computer object that represents the Motorala ATA ip address
* Create the following Access Rule
Allow -> selected protocols
==========================================
DNS
NTP(udp)
Time(UDP)
Vonage RTP (udp)
10000-20000 UPD Send Receive
10000-20000 UDP Receive
Vonage SIP (UDP)
5060-5061 Send Receive
5060-5061 Receive
Vonage TFTP (UDP)
69-69 Send Receive
69-69 Receive
============================================
to -> External.
That's all I did and it works fine. I found no need to create incoming rules.
Optional:
I have refined the access rule to go to vonage subnet 216.115.16.0/20 by creating a subnet object.
They (vonage) also use ntp0.usno.navy.mil (192.5.41.40) and Global-Crossing as the link to the phone system.
So if you wanted to go wild you could create the following network objects
Vonage Subnet object (in subnets)
Vonage Time Sync object (in computers, or computer ranges)
Vonage RTP object (global crossing subnet)
Then have the protocols directed to those objects only.
|
|
|
|
|
RE: VoIP / Vonage? - 2.Aug.2004 4:34:00 PM
|
|
|
willabr
Posts: 16
Joined: 19.Jan.2003
From: USA
Status: offline
|
P.S in the post above you have to create the protocols prefixed with "Vonage"
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
RE: VoIP / Vonage? - ![[Eek!]](/image/smiles/eek.gif)
![[Embarrassed]](/image/smiles/redface.gif)
![[Smile]](/image/smiles/smile.gif)
![[Razz]](/image/smiles/tongue.gif)
