Step-by-Step Process: Putting a Polycom Endpoint Behind a Firewall
- 1. On the Firewall, open up (bi-directionally):
VSX Series: TCP ports 1720, 3230-3239: UDP ports 3230-3269QDX Series: TCP ports 1720, 3230-3235: UDP ports 3230-3253
HDX Series: TCP ports 1720, 3230-3243: UDP ports 3230-3341
This port range, with the exception of 1720, varies by software version. Please verify the exact port range for your system by going to System > Admin Settings > Network > IP > Firewall.
- On the endpoint, go to System > Admin Settings > LAN Properties and confirm that it is set to Enter IP Address Manually, and that the appropriate internal IP address is being used.
- Set up a static NAT address on your firewall NAT table corresponding to the internal IP address of the endpoint. This must be a static one-to-one NAT. The public IP and private IP of the endpoint cannot be shared by any other device. Power cycle the endpoint after the firewall changes have been finalized.
- On the endpoint, go to System > Admin Settings > Network > IP > Firewall and check-mark “Fixed Ports” and turn the “NAT Configuration” to “Auto.”
- Under the “NAT Outside (WAN) Address” the public NAT address that was assigned in the NAT table will be displayed. If the IP address displayed is different, then the routing on the network is not set up correctly. If no IP is displayed verify that TCP port 80 is open on your firewall.
Use NAT is H.323 Compatible instead of Fixed Ports on Sonicwall Model TZ 200 (or like) firewall running 220.127.116.11-52o (should be 18.104.22.168e or newer)Learn more about this topic at scansourcecommunications.com >