Well folks, up for grabs those delicious 500 points!
We have the following setup SSG140 with a range of external IP's, one of them i have to put on a VIP because i need port 443 pointing to my portal and i want to use this same IP to be my voip address.
The thing is, i need to forward the following ports:
UDP 10000-20000 - RTP (needed for SIP communications)
UDP 5004-5037 - SIP (needed for SIP communications)
UDP 5039-5082 - SIP (needed for SIP communications)
UDP 4569 - IAX2 (needed for IAX communications between Asterisk servers)
as far as i know SSG-140 on the NETWORK > INTERFACES > VIP i have to do 1 forward at a time and dont know how to forward a range of ports.
After that i know i have to setup the POLICIES to allow traffic from the EXTERNAL NETWORK (UNTRUST) to the trust zone also.
THe main question is how to forward a range of ports from the external IP to an internal machine.