If you set up VPN and Remote Access, you would only have to open one port.
Once the user is authenticated and inside the network, they could Net
Meeting to their hearts content. For a Microsoft PPTP VPN, I open port
1723. That's it. The client receives an IP address inside my network
(trusted), so they have access to all the machines on our internal LAN. If
Fred wants to use Net Meeting, but Joe prefers Terminal Services and Jim
wants to use VNC, it doesn't change my configuration at all. All three
authenticate the same way, then they're in.
Christopher Gitzlaff
Manager - Information Systems & Technology
Major Industries, Inc.
Phone: 715-842-4616
Fax: 715-848-3336
-----Original Message-----
From: Paul Lipham [mailto:pml@...]
Sent: Wednesday, July 24, 2002 10:39 AM
To: vantage@yahoogroups.com
Subject: [Vantage] Off topic Net Meeting
We have a potential customer wanting to use MS Net Meeting with some of our
engineers. I added a built in Proxy on our firewall for H323 systems such
as Net Meeting It only opens up about three different ports. On Microsoft's
web site they say to open all the following ports.
This sounds pretty risky to me. Anyone care to scare my pants off about
this or does it sound OK.
Port Purpose
-------------------------------------
389 Internet Locator Server [Transmission Control Protocol (TCP)]
522 User Location Server (TCP)
1503 T.120 (TCP)
1720 H.323 call setup (TCP)
1731 Audio call control (TCP)
Dynamic H.323 call control (TCP)
* Pass through primary TCP connections on ports 522, 389, 1503, 1720
and 1731.
* Pass through secondary UDP connections on dynamically assigned
ports (1024-65535).
Dynamic H.323 streaming [Realtime Transport Protocol (RTP) over User
Datagram Protocol (UDP)]
Thanks for any comments
Paul Lipham
Alabama Specialty Products, Inc.
[Non-text portions of this message have been removed]
Useful links for the Yahoo!Groups Vantage Board are: ( Note: You must have
already linked your email address to a yahoo id to enable access. )
(1) To access the Files Section of our Yahoo!Group for Report Builder and
Crystal Reports and other 'goodies', please goto:
http://groups.yahoo.com/group/vantage/files/.
(2) To search through old msg's goto:
http://groups.yahoo.com/group/vantage/messages
(3) To view links to Vendors that provide Vantage services goto:
http://groups.yahoo.com/group/vantage/links
Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
Once the user is authenticated and inside the network, they could Net
Meeting to their hearts content. For a Microsoft PPTP VPN, I open port
1723. That's it. The client receives an IP address inside my network
(trusted), so they have access to all the machines on our internal LAN. If
Fred wants to use Net Meeting, but Joe prefers Terminal Services and Jim
wants to use VNC, it doesn't change my configuration at all. All three
authenticate the same way, then they're in.
Christopher Gitzlaff
Manager - Information Systems & Technology
Major Industries, Inc.
Phone: 715-842-4616
Fax: 715-848-3336
-----Original Message-----
From: Paul Lipham [mailto:pml@...]
Sent: Wednesday, July 24, 2002 10:39 AM
To: vantage@yahoogroups.com
Subject: [Vantage] Off topic Net Meeting
We have a potential customer wanting to use MS Net Meeting with some of our
engineers. I added a built in Proxy on our firewall for H323 systems such
as Net Meeting It only opens up about three different ports. On Microsoft's
web site they say to open all the following ports.
This sounds pretty risky to me. Anyone care to scare my pants off about
this or does it sound OK.
Port Purpose
-------------------------------------
389 Internet Locator Server [Transmission Control Protocol (TCP)]
522 User Location Server (TCP)
1503 T.120 (TCP)
1720 H.323 call setup (TCP)
1731 Audio call control (TCP)
Dynamic H.323 call control (TCP)
* Pass through primary TCP connections on ports 522, 389, 1503, 1720
and 1731.
* Pass through secondary UDP connections on dynamically assigned
ports (1024-65535).
Dynamic H.323 streaming [Realtime Transport Protocol (RTP) over User
Datagram Protocol (UDP)]
Thanks for any comments
Paul Lipham
Alabama Specialty Products, Inc.
[Non-text portions of this message have been removed]
Useful links for the Yahoo!Groups Vantage Board are: ( Note: You must have
already linked your email address to a yahoo id to enable access. )
(1) To access the Files Section of our Yahoo!Group for Report Builder and
Crystal Reports and other 'goodies', please goto:
http://groups.yahoo.com/group/vantage/files/.
(2) To search through old msg's goto:
http://groups.yahoo.com/group/vantage/messages
(3) To view links to Vendors that provide Vantage services goto:
http://groups.yahoo.com/group/vantage/links
Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/