BCM config for remote IP telephony
BCM config for remote IP telephony
(OP)
Hi there, I am sure someone here can help me.
Setting up a BCM 3.6 with IP telephony behind a firewall.
Within the LAN IP telephones function correctly (softphone or i2004), but when I attempt to connect to the BCM from outside the firewall I get NO regristration. I ~ think~ I have all the proper ports opened in the firewall, and all pointing at the BCM's LAN address. I ~feel~ that I have missed something in BCM setup or changed something the wrong way in BCM setup to allow remote IP telephony. Cause even when temporarily opening all ports on firewall, I still cannot get registration. Please help, I am getting very frusterated with this setup. Any advice would be GREATLY appreciated.
Hank Bene
benedash@yahoo.com
Setting up a BCM 3.6 with IP telephony behind a firewall.
Within the LAN IP telephones function correctly (softphone or i2004), but when I attempt to connect to the BCM from outside the firewall I get NO regristration. I ~ think~ I have all the proper ports opened in the firewall, and all pointing at the BCM's LAN address. I ~feel~ that I have missed something in BCM setup or changed something the wrong way in BCM setup to allow remote IP telephony. Cause even when temporarily opening all ports on firewall, I still cannot get registration. Please help, I am getting very frusterated with this setup. Any advice would be GREATLY appreciated.
Hank Bene
benedash@yahoo.com
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
On the whole - you're out of luck without going down the VPN + Softphone route.
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
The issue you may be having now is that your firewall may not support "bi directional" or "cone NAT". Also, the BCM payload traffic happens on 28000-28512 (if I'm not mistaken), so those ports have to be allowed to pass through the firewall also.
In short, it can be done without a firewall, but do you really want your phone system sitting on the public Internet with it's VOIP side open? I'd spend under $1000 and get a VPN device (around $800 for a Contivity 1010) and have your users connect to that. Launching their 2050 from that point won't be an issue.
RE: BCM config for remote IP telephony
RE: BCM config for remote IP telephony
Signaling between the IP telephones and the Business Communications Manager uses Business Communications Manager port 7000. However, voice packets are exchanged using the default RTP ports 28000 through 28255 at the Business Communications Manager, and ports 51000 through 51200 at the IP telephones. If these ports are blocked by the firewall or NAT, you will experience one-way or no-way speech paths.
Marshall
RE: BCM config for remote IP telephony
Anyway, mrmarshall is correct - UNISTIM runs on port 7000, so your phone will register, but that's about all it will do if the other ports are not allowed through the firewall (and that would be a pretty darn big hole in any firewall).