Firewall Information

Component

Name

IP

TCP Ports

UDP Ports

VidyoPortal

LocalVM

75.98.89.58

80 / 443 / 17992

N/A

VidyoRouter

CA2-VC1-VR1

75.98.89.59

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

CA2-VC1-VR2

75.98.89.207

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

NJ2-VC1-VR1

64.94.182.62

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

NJ2-VC1-VR2

64.94.182.71

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

UK1-VC1-VR1

31.186.235.35

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

UK1-VC1-VR2

31.186.235.54

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

UK1-VC1-VR3

31.186.235.63

443 / 17990

Bi-directional 50,000 - 65,535

VidyoRouter

UK1-VC1-VR4

31.186.235.69

443 / 17990

Bi-directional 50,000 - 65,535

VidyoGateway

CA Cluster

75.98.89.60

 

 

VidyoGateway

NJ Cluster

64.94.182.59

 

 

VidyoGateway

UK Cluster

31.186.235.56

 

 

VidyoGateway/Legacy H.323

 

- A static NAT needs to be implemented for the VidyoGateway

- The Firewall must be H.323 aware and H.323 inspection/support needs to be enabled

 

The following ports needs to be allowed on the NAT:

 

1720 TCP Control Port (static) – for Q.931 call signaling (H.225 protocol) used in setting-up and terminating a call. Q.931 negotiates which dynamic port range to use between the endpoints for H.245 Call Parameters, data, audio and video. The firewall must be able to allow H.323 related traffic through. Note: If the call never establishes at all, this port may be blocked.

 

1719 TCP (static) - Gatekeeper RAS

 

5060 UDP - SIP

 

These ports MUST be opened for BOTH directions:

1024 – 65535 TCP - Dynamic - H.245 (Call Parameters)

1024 – 65535 UDP - Dynamic - RTP (Video Stream Data)

1024 – 65535 UDP - Dynamic - RTP (Audio Stream Data)

1024 – 65535 UDP - Dynamic - RTCP (Control Information)