Border Gateway TCP IP Firewall ports 1

[nicolasgreening]

Afternoon all

We are having a border gateway installed and in preperation we need to set up the firewall rules. we want to restrict this to just the required ports but as we are not a Mitel partner I can not get a login to down load the techniacl documents from Mitel Edoc's

Can anyone send me them or which ports need to be opened?

Thanks in advance

Nick

 

[mitelmmaniac]

whats your email address.

Desk Jockey Lunacy

 

[aramsay]

These are our Cisco ASA rules - ensure that you are running the latest MBG, as one of the resent versions had a problem with one-way-audio between teleworkers.

Hope this helps

access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6801
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6802
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 3998
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6880
access-list EXTERNAL_ACCESS_IN extended permit udp any host EXT.IP.ADD.RESS range 20000 23000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 3300
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 2114
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 2116
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 35000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 37000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq https
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq www
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq ssh
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6801
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6802
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3998
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6880
access-list DMZ_ACCESS_IN extended permit udp host DMZ.IP.ADD.RESS any range 20000 23000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3300
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 2114
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 2116
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 35000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 37000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 eq 6800
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 eq 3999
access-list DMZ_ACCESS_IN extended permit udp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 range 1024 65535
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6800
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3999
static (DMZ,Outside) EXT.IP.ADD.RESS DMZ.IP.ADD.RESS netmask 255.255.255.255
static (DMZ,inside) EXT.IP.ADD.RESS DMZ.IP.ADD.RESS netmask 255.255.255.255

 

[nicolasgreening]

Hi Sorry for the long delay in responce and thanks for the replys