what is a Media proxy and how does it solve the RTP firewall problem

Hi,
I read about the RTP firewall problem. The RTP flow is unable to happen due to a firewall in between.
One solution to this was using a media proxy. But i couldnt understand what that is and how will that solve this problem.

Please help me understand about media proxy and how it solves the RTP firewall problem.
Thanks
Rohit BajajAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

harbor235Commented:
Typically a proxy is an application aware software or hardware platform that posses detailed knowledge and capabilities regarding the flows, security, and performance of a particular application.

So in your case, a media proxy is software or hardware that accepts RTP streams and acts on the behalf of the sender(s) to optimize the streams to the endoint(s). An RTP proxy will provide additional control and/or security (NAT topology hiding) of the RTP streams.

Most modern firewalls have built in proxy server capabilities, your problem could be that the  RTP application being used is behaving in an unexpected manner and the firewall is block the traffic, or that the firewall does not have RTP proxy capabilities and RTP streams are being dropped to traffic being generated outside its security policy.


harbor235 ;}
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Rohit BajajAuthor Commented:
Hi,
I didnt understand this much. If the client 2 sends the RTP data to a port to client 1. As this port will not be open on the firewall , the packet will get dropped by the Firewall. How will media proxy help in this case.
Will it open the port on the firewall automatically ??
0
Rohit BajajAuthor Commented:
I read something like the following about Media proxy but its unclear to me :

Media Proxy re-writes the SDP RTP/AVP field to direct RTP traffic back to a preferred port on the Media Proxy Server

The Media Proxy also Re-writes the RTP/AVP field when sending messages to the initiating SIP UA so that all RTP traffic again hits a preferred port

This preferred port can be opened on the Firewall and set to only accept traffic from the Media proxy
0
harbor235Commented:
Correct, as robinsuri states, if you understand how the RTP application is operating the firewall can be adjusted to allow the traffic streams.

If the firewall has a built-in RTP proxy like a Cisco ASA or a Juniper SRX (there are more) then the firewall will allow the necessary traffic through based on the initial RTP connection and application signaling. In this case the firewall inspects
the RTP flow and since it is RTP aware can inspect the RTP segments and open all necessary ports as signaled by the sender and receiver.

 
harbor235 ;}
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking Protocols

From novice to tech pro — start learning today.