Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Router Ports With SCN
- Thread starter EpoUser08
- Start date
hairlessupportmonkey
IS-IT--Management
erm. how are you implementing your SCN?
- Thread starter
- #3
hairlessupportmonkey
IS-IT--Management
Erm, no, but is there a VPN involved here?
- Thread starter
- #5
hairlessupportmonkey
IS-IT--Management
my question, without trying to complicate your question, is, why would you need to open ports across a VPN?
the best method is simply to have unimpeded traffic across your VPN tunnel for the SCN / Speech to work properly.
the best method is simply to have unimpeded traffic across your VPN tunnel for the SCN / Speech to work properly.
SCNIPOffice
IS-IT--Management
To answer your question, harlesssupportmonkey, the principle of least privilege.
Why let ports/traffic through unless you know they're expected and necessary?
Then again, just a speculative answer to why all traffic may not be allowed through. Avaya should publish a list of ports and data types used, no?
Why let ports/traffic through unless you know they're expected and necessary?
Then again, just a speculative answer to why all traffic may not be allowed through. Avaya should publish a list of ports and data types used, no?
amriddle01
Programmer
Why let ports/traffic through unless you know they're expected and necessary?"
You know the reason why now, the only people who can access the VPN are people with the credentials to do so, people who you have allowed. Why restrict what you send down the link when it can only cause issues and gains no security above the VPN anyway, you are just introducing problems. A bit like padlocking a box inside the bank vault
ACSS (SME)
APSS (SME)
"I'm just off to Hartlepool to buy some exploding trousers
You know the reason why now, the only people who can access the VPN are people with the credentials to do so, people who you have allowed. Why restrict what you send down the link when it can only cause issues and gains no security above the VPN anyway, you are just introducing problems. A bit like padlocking a box inside the bank vault
ACSS (SME)
APSS (SME)
"I'm just off to Hartlepool to buy some exploding trousers
hairlessupportmonkey
IS-IT--Management
Dear SCNIPOffice,
Trawl through these forums and find someone who has had success running an SCN across a VPN with inspected traffic, then I will withdraw my question.
Trawl through these forums and find someone who has had success running an SCN across a VPN with inspected traffic, then I will withdraw my question.
montyzummer
IS-IT--Management
HSM , Is dead on, the whole point of a VPN is a secure connection that is only available to the people who have the details to connect to it , there truly is no need to open ports in a VPN enviroment , well certainly not for what you are trying to achive across SCN , the example of the bank vault is a good one , but also as stated for future use a full list of ports is on the knowledge base .
- Status