Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Operator » Groundwire + Operator
  •  
fixmymac

Messages: 20
Karma: 0
Send a private message to this user
Hi,

Can someone tell me what ports I need to forward to Operator for Groundwire to run?
  •  
Lisa Lyons (Kerio)

Messages: 175
Karma: 8
Send a private message to this user
This would be the same as if you were opening the ports for an IP Phone outside your network.

1: SIP (UDP/5060)
2: RTP (as defined on the Network tab, under the system menu - Default is 10000 to 19999)

Don't forget to go to the firewall tab, and allow SIP traffic to more than just your local hosts there.

Also, don't forget to set the necessary NAT settings in the network tab (as above) and for the extension if your iOS device is going to be behind another firewall.

Kerio Technical Support
Log Support Incidents here: http://www.kerio.com/support
Also, please use our KB: http://kb.kerio.com
  •  
fixmymac

Messages: 20
Karma: 0
Send a private message to this user
Thank you for your reply Lisa, could you supply with me a template to use for such a setup using Kerio Control and Operator?
  •  
Lisa Lyons (Kerio)

Messages: 175
Karma: 8
Send a private message to this user
If you give your support team a call, they will be glad to help you. It shouldn't take much more than a couple of very simple rules.

Kerio Technical Support
Log Support Incidents here: http://www.kerio.com/support
Also, please use our KB: http://kb.kerio.com
  •  
ICT and Me

Messages: 940

Karma: 53
Send a private message to this user
fixmymac,

I have attached a screenshot from our Control to Operator settings.
We believe to always inbound and outbound rules.
This is working as long as Operator exist. We are beta-testers from the beginning.

Also this setting is working for those who have trouble with phone outside your LAN.


ICT and Me
Carlo Turk
The Netherlands
www.ictandme.nl
  •  
fixmymac

Messages: 20
Karma: 0
Send a private message to this user
Hi,

I can't find RTP in the services? Am I going crazy?
  •  
Lisa Lyons (Kerio)

Messages: 175
Karma: 8
Send a private message to this user
Hi, Sean

OK, firstly, please don't post your firewall config on these open forums, as they are freely searchable and could potentially open a vulnerability onto your network.

I usually recommend the following settings:
Name: SIP traffic
source: Internet Interfaces
destination: The External IP of your Operator server
service:  HTTP
          HTTPS
          RTSP
          UDP 5060
          UDP 5061
          UDP 10,000-20,000
NAT:  mapped to your internal operator IP
Protocol Inspector: Default or none

With the protocol inspector, if you are using Control's bandwidth management, you will want it ON or on Default, as the PI is required to monitor your traffic.

UDP 10,000 to 20,000 comes from the Operator box under System -> Network and "RTP port range".

HTTP and HTTPS are permitted so that your users can get to 'My Phone' and then UDP 5060 and 5061 are SIP variants.

Port 5060 is for SIP.
Port 5061 is for Secure SIP.

RTSP = Real Time Streaming Protocol.

If this doesn't work, then please take this to the Support team through our ticketing system, as we will be able to give you very specific support for your problem. These forums are not usually a good place to discuss specific problems as complicated as firewall rules like this and the support team will be more able to aid you through the correct channels.

[Updated on: Mon, 12 March 2012 17:33]


Kerio Technical Support
Log Support Incidents here: http://www.kerio.com/support
Also, please use our KB: http://kb.kerio.com
Previous Topic: Connect Integration Weirdness
Next Topic: Call Routing issue with SIP Trunks
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Tue Oct 24 09:30:58 CEST 2017

Total time taken to generate the page: 0.00398 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.