Rohit Bajaj
asked on
what is a Media proxy and how does it solve the RTP firewall problem
Hi,
I read about the RTP firewall problem. The RTP flow is unable to happen due to a firewall in between.
One solution to this was using a media proxy. But i couldnt understand what that is and how will that solve this problem.
Please help me understand about media proxy and how it solves the RTP firewall problem.
Thanks
I read about the RTP firewall problem. The RTP flow is unable to happen due to a firewall in between.
One solution to this was using a media proxy. But i couldnt understand what that is and how will that solve this problem.
Please help me understand about media proxy and how it solves the RTP firewall problem.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I read something like the following about Media proxy but its unclear to me :
Media Proxy re-writes the SDP RTP/AVP field to direct RTP traffic back to a preferred port on the Media Proxy Server
The Media Proxy also Re-writes the RTP/AVP field when sending messages to the initiating SIP UA so that all RTP traffic again hits a preferred port
This preferred port can be opened on the Firewall and set to only accept traffic from the Media proxy
Media Proxy re-writes the SDP RTP/AVP field to direct RTP traffic back to a preferred port on the Media Proxy Server
The Media Proxy also Re-writes the RTP/AVP field when sending messages to the initiating SIP UA so that all RTP traffic again hits a preferred port
This preferred port can be opened on the Firewall and set to only accept traffic from the Media proxy
Correct, as robinsuri states, if you understand how the RTP application is operating the firewall can be adjusted to allow the traffic streams.
If the firewall has a built-in RTP proxy like a Cisco ASA or a Juniper SRX (there are more) then the firewall will allow the necessary traffic through based on the initial RTP connection and application signaling. In this case the firewall inspects
the RTP flow and since it is RTP aware can inspect the RTP segments and open all necessary ports as signaled by the sender and receiver.
harbor235 ;}
If the firewall has a built-in RTP proxy like a Cisco ASA or a Juniper SRX (there are more) then the firewall will allow the necessary traffic through based on the initial RTP connection and application signaling. In this case the firewall inspects
the RTP flow and since it is RTP aware can inspect the RTP segments and open all necessary ports as signaled by the sender and receiver.
harbor235 ;}
ASKER
I didnt understand this much. If the client 2 sends the RTP data to a port to client 1. As this port will not be open on the firewall , the packet will get dropped by the Firewall. How will media proxy help in this case.
Will it open the port on the firewall automatically ??