<html><head><meta http-equiv="Content-Type" content="text/html charset=windows-1252"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">TLS, Web socket, Secure web sockets...<div><br><div><div>On Jul 31, 2013, at 3:50 AM, Ken Rice <<a href="mailto:krice@freeswitch.org">krice@freeswitch.org</a>> wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">
<title>Re: [Freeswitch-users] What ports are really necessary?</title>
<div>
<font face="Monaco, Courier New"><span style="font-size:11pt">Keep in mind that’s only on firewalls that are sip aware, many are not<br>
<br>
<br>
On 7/31/13 2:09 AM, "Steven Ayre" <<a href="x-msg://31947/steveayre@gmail.com">steveayre@gmail.com</a>> wrote:<br>
<br>
</span></font><blockquote type="cite"><font face="Monaco, Courier New"><span style="font-size:11pt">On a stateful firewall you can also choose to only open the SIP ports. That'll depend on your SIP profile settings. 5060 at least, and perhaps 5080 too.<br>
<br>
The firewall could look at the SDP, mark the RTP ports as related traffic and automatically open them for you too.<br>
<br>
That can -only- work with normal SIP though - for obvious reasons if you're using TLS it won't be able to see the ports being used.<br>
<br>
-Steve<br>
<br>
<br>
<br>
<br>
On 25 July 2013 17:56, Lloyd Aloysius <<a href="x-msg://31947/lloyd.aloysius@sunteltech.ca">lloyd.aloysius@sunteltech.ca</a>> wrote:<br>
</span></font><blockquote type="cite"><span style="font-size:11pt"><font face="Verdana, Helvetica, Arial">SIP TCP/UDP 5060 - 5090 <br>
RTP UDP 16384 - 32768<br>
<font color="#888888"><br>
Lloyd<br>
</font></font></span><font face="Verdana, Helvetica, Arial"><font color="#CC6600"><font size="2"><span style="font-size:10pt"><b> <<a href="http://www.sunteltech.ca/blog/">http://www.sunteltech.ca/blog/</a>> <br>
</b></span></font></font></font><font face="Monaco, Courier New"><span style="font-size:11pt"><br>
<br>
On Wed, Jul 24, 2013 at 8:38 PM, Jim Lynch <<a href="x-msg://31947/jim@k4gvo.com">jim@k4gvo.com</a>> wrote:<br>
</span></font><blockquote type="cite"><font face="Monaco, Courier New"><span style="font-size:11pt">I'm running a simple switch. No phones are connected to the system from<br>
outside of my local network. The only wan connections I have are a<br>
couple of voip providers. None of my phones on the lan call outside of<br>
the lan. All they talk to is the switch.<br>
<br>
I see a bunch of ports listed at<br>
<a href="http://wiki.freeswitch.org/wiki/Firewall">http://wiki.freeswitch.org/wiki/Firewall</a> but don't know if I need them<br>
all. I suspect I don't. I want to close up the firewall as much as I can.<br>
<br>
Thanks,<br>
Jim.<br></span></font></blockquote></blockquote></blockquote></div></blockquote></div><br></div></body></html>