UCi2i VC Endpoint Firewall Requirements
Due to the implementation of our secure video network, there are a few firewall rules that may be required depending on your network configuration to allow communication with the UCi2i infrastructure. This is to provide our customers with the best technology on the market.
Note: you can download this guide in PDF from the bottom of this page.
What this means to you
In order to take full advantage of our service, we MAY require you to make some changes to your firewall to allow communication from your current hardware/software to our Firewall Traversal Servers. Please note that many firewalls work without any modification at all.
If you wish to test your firewall before deploying our managed video service, then call test@dial.vc (more instructions here). and you’ll be prompted to speak “1…2…3” and this recording will loop back to you. If you can see and hear this then you’re good to go.
What addresses and ports does video conferencing use?
Please see below firewall port requirements. In order to provide resiliency, we will require you to open ports to multiple addresses.
UCi2i address ranges
91.244.117.67
91.233.183.163
91.244.117.110 to 91.244.117.116
91.244.117.197 to 91.244.117.198
91.233.183.167 to 91.233.183.173
91.233.183.197 to 91.233.183.198
114.141.187.121 to 114.141.187.125
40.118.255.198
Complete Firewall Port List
To enable the UCi2i service a complete list of the ports required is below. Should, you require information on the individual protocol requirements then please see the next section for a breakdown of services.
Function |
Port (s) |
Type |
Direction |
HTTP |
80 |
TCP |
Host ----> UCi2i |
HTTPS |
443 |
TCP |
Host ----> UCi2i |
Gatekeeper RAS |
1719 |
UDP |
Host ----> UCi2i |
H.225 Protocol |
1720 |
TCP |
Host ----> UCi2i |
Signalling/Media (RTP) |
2776 |
TCP+UDP |
Host ----> UCi2i |
RTCP + H.245 |
2777 |
TCP+UDP |
Host ----> UCi2i |
STUN/TURN Media |
3478 |
UDP |
Host ----> UCi2i |
SIP Signalling(TCP) |
5060 |
TCP+UDP |
Host ----> UCi2i |
SIP Signalling(TLS) |
5061 |
TCP |
Host ----> UCi2i |
Q931/H245 Signalling |
33000-39999 |
TCP |
Host ----> UCi2i |
Media + Lync/Skype for Business |
40000-49999 |
TCP+UDP |
Host ----> UCi2i |
Media + Lync/Skype for Business |
40000-54999 |
UDP |
Host ----> UCi2i |
Defined Services Firewall List
SIP Proxies
Please ensure that the correct ports are open depending on the video conferencing system you are using. There are different port requirements for SIP depending on what signalling method your system is using. The media requirements are the same regardless of the signalling method. Note these outbound exceptions are required to establish a UDP/TCP session. There are absolutely no inbound pinholes required.
Function |
Port (s) |
Type |
Direction |
SIP Signalling(TLS) |
5061 |
TCP |
Host ----> UCi2i |
SIP Signalling(TCP) |
5060 |
TCP |
Host ----> UCi2i |
SIP Signalling(UDP) |
5060 |
UDP |
Host ----> UCi2i |
Media (RTP) |
2776 |
UDP |
Host ----> UCi2i |
Media (RTCP) |
2777 |
UDP |
Host ----> UCi2i |
Media |
40000 - 54999 |
UDP |
Host ----> UCi2i |
H323: Using Assent Firewall Traversal
If your video conference system supports Assent traversal, you MAY need to open the ports below in order to register to our firewall traversal server.
Function |
Port (s) |
Type |
Direction |
Gatekeeper RAS |
1719 |
UDP |
Host ----> UCi2i |
Call Signalling |
2776 |
TCP |
Host ----> UCi2i |
Media (RTP) |
2776 |
UDP |
Host ----> UCi2i |
Media (RTCP) |
2777 |
UDP |
Host ----> UCi2i |
Q931/H245 Signalling |
33000-39999 |
TCP |
Host ----> UCi2i |
Media |
40000 - 54999 |
UDP |
Host ----> UCi2i |
H323: Using H.460.18/19 Firewall Traversal (used by all Polycom/Lifesize devices)
If your video conference system is not a Cisco Telepresence device and supports H.460.18/19 firewall traversal, you will need to open the ports below in order to register to our firewall traversal server.
Function |
Port (s) |
Type |
Direction |
Gatekeeper RAS |
1719 |
UDP |
Host ----> UCi2i |
H.225 Protocol |
1720 |
TCP |
Host ----> UCi2i |
H.245 Protocol |
2777 |
TCP |
Host ----> UCi2i |
Q931/H245 Signalling |
33000-39999 |
TCP |
Host ----> UCi2i |
Media (RTP) |
2776 |
UDP |
Host ----> UCi2i |
Media (RTCP) |
2777 |
UDP |
Host ----> UCi2i |
Media |
40000-54999 |
UDP |
Host ----> UCi2i |
Browser-based Video Calling (a.k.a. WebRTC)
We offer browser-based video calling - all major browsers are supported. This is typically known as WebRTC but we offer more than that as WebRTC is limited to Google Chrome, Firefox and Opera. We also provide service to any browser that also supports Adobe Flash. To allow this feature to work, the following ports will need to be opened:
Function |
Port (s) |
Type |
Direction |
STUN/TURN Media |
3478 |
UDP |
Host ----> UCi2i |
Media |
40000-49999 |
TCP |
Host ----> UCi2i |
Media |
40000-49999 |
UDP |
Host ----> UCi2i |
HTTP |
80 |
TCP |
Host ----> UCi2i |
HTTPS |
443 |
TCP |
Host ----> UCi2i |
Key
Please see below explanations of the direction column (where applicable):
Direction |
Explanation |
Host <----> UCi2i |
Ports needs to be opened inbound and outbound to/from your VC endpoint and UCi2i |
Host <---- UCi2i |
Ports need to be opened inbound to your VC endpoint from the UCi2i address ranges |
Host ----> UCi2i |
Ports need to be opened outbound from your VC endpoint to the UCi2i address ranges |
UCi2i ----> Host |
Ports need to be opened inbound to your VC endpoint from the UCi2i address ranges |
Finally, if you have any problems, please feel free to contact our support team via one of the follow methods:
Email Address: support@uci2i.com
Video Address: support@uci2i.com
Support Help Centre: https://support.uci2i.com/hc
Telephone: +442038418555 (EMEA) or +852 2281 5300 (APAC)
評論
0 條評論
請登入寫評論。