Sie sind auf Seite 1von 3

Table 80: Access list guidelines for Avaya S8300, S8500, S8700-series Media Servers

Action From TCP/UDP To TCP/UDP Notes


port port
or protocol or protocol

Permit S8300, TCP 80 Web admin TCP any


S8500, or station(s)
S8700
enterprise
interface

Permit Web admin TCP any S8300, TCP 443


station S8500, or
S8700
enterprise
interface

Permit S8300, TCP 443 Web admin TCP any


S8500, or station(s)
S8700
enterprise
interface

Permit S8300, UDP any DNS UDP 53 (dns) Optional services used by
S8500, or server(s) S8300, S8500, and S8700.
S8700
enterprise
interface

Permit DNS UDP 53 (dns) S8300, UDP any


server(s) S8500, or
S8700
enterprise
interface

Permit S8300, UDP any NTP UDP 123


S8500, or server(s) (ntp)
S8700
enterprise
interface

Permit NTP UDP 123 S8300, UDP any


server(s) (ntp) S8500, or
S8700
enterprise
interface

Permit G700 or TCP any S8300 or TCP 2945 Unencrypted: H.248


G350 other signaling between G700 or
call server G350 Media Gateway and
S8300 or other call server.
G700/G350 initiates the
session.

2 of 3

Issue 4.2 February 2006 447


Access list

Table 80: Access list guidelines for Avaya S8300, S8500, S8700-series Media Servers

Action From TCP/UDP To TCP/UDP Notes


port port
or protocol or protocol

Permit S8300 or TCP 2945 G700 or TCP any


other G350
call server

Permit G700 or TCP any S8300 or TCP 1039 Encrypted: H.248


G350 other signaling between G700 or
call server G350 Media Gateway and
S8300 or other call server.
G700/G350 initiates the
session.

Permit S8300 or TCP 1039 G700 or TCP any


other G350
call server

Permit Call server IP any IPSI board IP any There are too many system
control messages and
services between the call
server and IPSI board to
filter each one individually.

Permit IPSI board IP any Call server IP any

3 of 3

Access list guidelines are dependent upon the release of Communication Manager running on
the Linux primary servers and LSPs, as described in Table 81: Port requirements for file
synchronization on page 448.

Table 81: Port requirements for file synchronization

Primary Firewall Port Customer Network LSP Firewall Port


Port(s)

Both primary and LSP running pre-CM2.x:

TCP 514 TCP 512 - 1023 TCP 514

Both primary and LSP running CM2.x

TCP 21873 (opens TCP 21873 TCP 21873 (opens


automatically; TCP 514 automatically; TCP 514 no
no longer needed) longer needed)

Both primary and LSP running CM3.x

1 of 2

448 Avaya Application Solutions: IP Telephony Deployment Guide


Table 81: Port requirements for file synchronization (continued)

TCP 21874 (opens TCP 21874 TCP 21874 (opens


automatically) automatically)

Backward compatibility (CM1.3 primary; CM2.x LSP)

TCP 514 TCP 512 - 1023 TCP 21873 (opens


automatically)

Backward compatibility (CM2.x primary; CM3.x LSP)

TCP 21873 (opens TCP 21873 TCP 21874 (opens


automatically) automatically)
2 of 2

Issue 4.2 February 2006 449