Link to home
Create AccountLog in
Avatar of rigneydolphin
rigneydolphin

asked on

udp request discarded

Hi,

I am trying to connect to a video conference via polycom pvx application. I can connect successfully but do not receive inbound video and audio.
My outbound video and audio displays correctly to the other party.
I'm using a cisco ASA 5520 which is open in both directions to all IP traffic from the public IP of the video conference system i am connecting to.
Checking firewall logs i do see numerous udp requests being discarded between the public IP of the video conference system to the outside interface public IP of my firewall on ports 3230 and 3232.
Both these ports are open however.

Does anyone know a possible solution to this?

Thanks
Avatar of ragnarok89
ragnarok89

Is your video conference in a DMZ or similar, where it's security setting is lower than the outside interface public IP of my firewall? PIX does not allow communication from low security port to a higher security port by default. You have to create rules for that.

Another possibility is your PIX not letting the endpoint's traffic in, or the endpoint PIX (if there is one) might not be letting their traffic out.
Avatar of rigneydolphin

ASKER

Thanks for the reply - my video conference is inside the internal interface however i have allowed all IP traffic from the video conference host IP to the outside world and vice versa.

The endpoint on the other side is configured correctly - if i use a data connection which bypasses the ASA i can connect successfully and received audio/video
ASKER CERTIFIED SOLUTION
Avatar of mikegatti
mikegatti

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Basic on your submittion,  you are able to connect and your outbound audio n video is able to send out properly to the far end.
But you are still facing firewall issues. This is normal
.Did you call to a public IP address while your ip address is a internal one ?
If that the case you need to do some configuration on your FW/Router setting to router your public ip address using ports forwarding to your internal ip address.

Some firewall require you to manually specific the ports for video conferening.
The ports are 1719 to 173, TCP and UDP, Bi-directional.