[Shorewall-users] Solution: H323, Gnomemeeting, Netmeeting

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi all,
I have seen many posts on the Shorewalllists dealing with H323. Although =
=20
lots of them indicated that this is difficult process with =20
kernelrecompilation etc. I just tried what seemed to be logical for me. =20
Surprisingly it worked.

Configuration:

WS1 ----- FW ------ Internet ------- WS2/Shorewall

WS1, FW and WS2 run Redhat9 with its standardkernel 2.4.20. FW and WS2 ru=
n =20
Shorewall and here are the rules:

rules on FW:
-------------------------------------------------------------
# H323

DNAT    net     loc:192.168.3.11        tcp     1720
DNAT    net     loc:192.168.3.11        tcp     30000:30010
-------------------------------------------------------------

rules on WS2
-------------------------------------------------------------
# H323
ACCEPT          net              fw      tcp     1720
ACCEPT          net              fw      tcp     30000:30010
-------------------------------------------------------------

WS1 and WS2 both run Gnomemeeting and we can talk with each other fine. =20
There is no patch and no gatekeeper involved.

Hope this is usefull for someone else and pls. let me know, if you have =20
any concerns regarding security.

Regards, Ingo.