burkett sura

67 %
33 %
Information about burkett sura

Published on January 4, 2008

Author: Cinderella

Source: authorstream.com

Slide1:  Calling Across The Boundaries Mike Burkett, VP Products mburkett@ridgewaysystems.com April 25, 2002 Why should you care about NATs and Firewalls?:  Why should you care about NATs and Firewalls? Network Address Translation (NAT) and Firewalls will block your IP voice and video calls. What is NAT?:  What is NAT? Network Address Translation Allows multiple users/devices to share a single public internet address Implemented within the router Think of it like a PBX with a public trunk number and private extensions for IP networks Shared Public Address What is a Firewall?:  What is a Firewall? Separates and “Protects” the Private Network from the outside world. Examines every packet that goes in to or out from the enterprise. Typically blocks all unsolicited inbound packets Think of a mail room clerk filtering your inbound and outbound mail Outside World Private Network Unsolicited Disallowed Why H.323 & SIP Don’t Work…:  Why H.323 & SIP Don’t Work… With firewalls Require inbound connections for inbound calls Each call requires multiple TCP and UDP connections to random ports With NATs Private addresses hidden from the outside network – means no inbound calling Outbound calling endpoints request media sent to their private address – means one way video/audio The Imaginary IP World:  The Imaginary IP World No Firewalls No NAT No Security All public IP Addresses All Calls Successful Not the real world! Bob Susan Tom Branch Office Teleworker Corporate Today’s Real IP Video World:  Today’s Real IP Video World WAN WAN Bob Susan Tom Teleworker Corporate Branch Office Firewall/NAT at the edge of the corporate network NAT or Firewall hidden in the network Firewalls & NAT: Where?:  Firewalls & NAT: Where? Deployed Everywhere: Corporate Networks Home Networks Individual PCs And Hidden In the Net Anywhere someone wants to Share a connection Protect a network WAN What choices do you have?:  What choices do you have? Bypass Public Endpoints Private Network Gateway MCU Replace Upgrade Hardware Infrastructure Traverse Use Ridgeway Software Bypass: Public Endpoints:  Bypass: Public Endpoints How Give the endpoints public IP addresses Move them outside the firewall Benefits May be lowest capital cost? Issues Requires Dedicated Public IP Addresses Removes Protection of Firewall Not easily scalable Cannot overcome network based NAT/FW WAN Bypass: Private Network:  Bypass: Private Network How Establish Virtual Private Network (VPN), usually via Firewall configuration Benefits Works for Intra-Company communications May already be in place Issues Not for inter-enterprise communications Requires configuration at every location May have performance impacts – increased delay Some VPNs won’t handle NAT WAN Bypass: PSTN/ISDN Gateway:  Bypass: PSTN/ISDN Gateway How Gateway to PSTN or ISDN at edge of network Benefits May already be in place for calling “off-net” Issues Loses benefits of the pure IP solution Doesn’t solve problem for the mobile IP endpoint IP WAN PSTN/ ISDN Bypass: MCU:  Bypass: MCU How Deploy MCU with two network interfaces, one inside & one outside of firewall/NAT Benefits Natural extension for existing MCU deployments Issues Can be expensive solution; not appropriate for SOHO or consumer deployment Localized solution, needs to be deployed at every NAT/FW Cannot overcome network based NAT/FW WAN Replace: Upgrade Infrastructure:  Replace: Upgrade Infrastructure How Upgrade firewalls and routers with Application Level Gateway (ALG) Benefits Brand name solutions? Issues This means changes to mission critical network components for the enterprise network Fix every NAT & Firewall for every protocol Unreachable: Physically, Politically, or Intellectually? Cannot overcome network based NAT/FW WAN Traverse: Ridgeway:  Host Network Guest Network Guest Network DMZ Proxy/Registrar/GK WAN Traverse: Ridgeway How Place single server at “reachable address” Download software client for any “guest network” Benefits No upgrade for existing mission critical components Handles any number of NATs & Firewalls, even network based Handles SIP or H.323 Compatible with your existing infrastructure Voice and Video Mobile solution Download-and-Call means no waiting to call into a new location The Ridgeway Method:  The Ridgeway Method Ridgeway (RW) Clients connect to the RW Server Outbound Fixed ports: 2776/2777 RW Server/Clients “proxy” the GK so it appears at the RW Client Endpoints set RW Client as their GK and register and then appear as a ports on the RW Server Behind the scenes: All TCP traffic goes over the pre-established TCP connection As UDP streams are needed the RW client pushes a stream out to the server that the server can use for return traffic (outbound, fixed ports) From endpoint perspective, calls proceed as usual Host Network Guest Network DMZ Proxy/Registrar/GK WAN Ridgeway Client IP Freedom Server Ridgeway Client More On Ridgeway Traversal:  More On Ridgeway Traversal Commercially deployed today in both enterprise and service provider environments One server for multiple endpoints & networks No upgrade to existing NAT/FW or endpoints No open inbound firewall ports No charge for client Upgrade server capacity instantly Add-on for VPN & PSTN gateway solutions Summary:  Summary Firewalls & NATs are everywhere Firewalls & NATs block IP Voice & Video Solution Choices: Bypass, Replace, Traverse Traversal: Don’t mess with your critical components Treat the network like a black box Download and call today! Free trial www.ridgewaysystems.com http://www.vide.net/vpz/firewalls.html

Add a comment

Related presentations

Related pages

Surah Burkett - Google+

Surah Burkett hasn't shared anything on this page with you.
Read more

Zack Burkett/MDFC/Sure Win Productions Super Cut - YouTube

A super cut of the four films I worked on during my time at the University of Maryland - The Last Laugh, The Attachment, Domino, and Blast from ...
Read more

Burkett Farm

The Burkett Farm volunteers have been invaluable in their help. We make sure people get to help with a variety of tasks and learn a little something while ...
Read more

COVER STORY - Columbia College Today

COVER STORY Eyewitness to the News From 9-11 to the Mideast, N.J. Burkett ’84, ’85 SIPA Tells Important Stories His Way By Maggie Gram ’05
Read more

Larry Burkett

Larry Burkett. 316 likes · 1 talking about this. 1939~2003. Facebook logo. Email or Phone: Password: Keep me logged in. Need help? Larry Burkett. Author.
Read more

Christopher Burkett | LinkedIn

View Christopher Burkett’s professional profile on LinkedIn. LinkedIn is the world's largest business network, helping professionals like Christopher ...
Read more

Randy Burkett Profiles | Facebook

View the profiles of people named Randy Burkett on Facebook. Join Facebook to connect with Randy Burkett and others you may know. Facebook gives people...
Read more

Burkett Baptist Church Burkett, Texas

Burkett Baptist Church, located in central Texas, is a Southern Baptist church which proudly and unashamedly proclaims salvation by grace through faith, in ...
Read more

Burkett Homes (Lic. 43172) | BuildZoom - BuildZoom: Find a ...

Burkett Homes is based in Clarksville, TN and holds 43172 ... Before hiring a contractor in Tennessee, be sure to get at least 3 detailed bids.
Read more

Dr. Sarah Burkett, MD - Novi, MI - Family Medicine ...

Visit Healthgrades for information on Dr. Sarah Burkett, MD. Find Phone & Address information, medical practice history, affiliated hospitals and more.
Read more