Firewall Compatibility

The bandwidth issues of the home technology environment are replaced by network hardware issues in the enterprise technology environment. The most common hardware problems occur with the firewall. There are literally hundreds of firewalls available, and none of them configure the same way. They all, however, support the same basic features. The problem is having someone with enough knowledge to figure out what needs to be done to the firewall in order to make it work for videoconferencing. A standard set of rules implemented at the firewall for any video conferencing devices -

These rules are:

Port(s)  Protocol  Direction  Purpose


TCP/UDP  In/Out  T.120 Data Sharing
1718-1720 TCP/UDP  In/Out  Q.931 Call Setup 
2326-2373 TCP/UDP  In/Out  Video/Audio/Data (Tandberg) 
3230-3237 TCP/UDP  In/Out  Video/Audio/Data (Polycom)
5555-5560 TCP/UDP In/Out H.245 Call Setup
9940  TCP/UDP In/Out  iVisit 





As long as the software/codec and the firewall on the remote end are configured to use these ports (specifically 1718-1720 and 3230-3235), conferencing should go smoothly.

The only hitch is with SONICWall Firewalls, which hasn't been resolved to our knowledge. Newer ITU standards such as H.460.17, H.460.18, and H.460.19, which allow for NAT/firewall traversal may circumvent these issues as well as make using a standardized set of ports irrelevant.