HOME arrow Troubleshooting arrow Troubleshootingarrow Firewalls

Firewalls FAQ


Routers - Personal

How to configure SightSpeed to work with your home router or wireless gateway.
Typically most home routers will not require any additional configuration, but under some circumstances SightSpeed traffic may not be routed correctly through or between one or more home routers. In these cases, you can configure a port forwarding rule which will pass all SightSpeed traffic from the internet through the device to you computer.

If you have a home or small office (SOHO) Cable/DSL router that is not functioning correctly when you use SightSpeed, take a look at www.portforward.com, as they have documented several hundred different brands and models of home routers.

 Firewalls and Routers 
When following the instructions on how to set up a port-forwarding rule from www.portforward.com just remember that SightSpeed needs Port 9000 UDP forwarded to your computers internal IP address. If you plan on running SightSpeed on more than one computer on your home network, you will need to specify a unique port number for each computer in the Advanced Internet Connection Settings of SightSpeed, and create a corresponding port-forwarding rule for each as well.

 

D-Link Routers - Check to see if your D-link is running a so called Application Layer Gateway (ALG) for SIP or Session Initiation Protocol, which should be disabled. Log into the admin page of your router and go to Firewall Settings then uncheck "SIP".

 

 

 



Kerio Firewalls

 

Kerio PC Protection Firewall Configuration

To Setup your Kerio PC Protection Firewall to work with SightSpeed please follow the instructions below:

 

kerio1
 

1. Start Kerio PC Protection Firewall. In the upper left corner, click on the menu entry Admin.

 

kerio2

 

2. On the tab labeled Firewall click on the Advanced button. This will open up another configuration page with set of rules already known to the firewall. On the tab labeled Filter Rules, in the lower left corner click on the Add button, to add anew rule to the firewall. Once this is accomplished proceed to step 3.

 

kerio3


 
3. Fill out this page using the screen shot above and then click Ok until you have returned to the main application.


Configure the SightSpeed Video Conference Receive Port


1. Open the SightSpeed client, and select Options -> Preferences
2. In the Preferences Wizard, advance to Network (Step 2 of 5)
3. In the Network section, click on the Advanced button
4. Under IP info, set the Receive Port to the corresponding port you set in step 2 of the Add SightSpeed as a Service section.
5. Click Finished and Restart SightSpeed Video Conferencing

You are now configured to use SightSpeed through your firewall, and free to see.

 

If you have any further questions, please contact support



Sygate Firewalls

 

To Setup your Sygate Personal Home Firewall to work with SightSpeed please follow the instructions below:

 

syg1


1. Start Sygate Personal Home Firewall. Click on the Tools Menu on the menu bar and then click on Advanced Rules in the drop down menu. A warning will pop up about the dangers of configuring the firewall rules. Click Ok and move on to the pop up table. In the lower left hand corner click the ADD button which allows a new rule to be added to the firewall.

 

syg2


 
2. Under the tab labeled General, in the action section click on the radio button which says Allow this traffic. Once that is complete click on the tab labeled Ports and Protocols.

 

syg3
 
3. Under the option labeled Protocol select the option UDP. Two options will appear under the Protocol options, one labeled Remote and the other Local. Enter 9000 in each line. Click ok to accept the all the changes close the advanced rule settings.

 

Configure the SightSpeed Video Conference Receive Port


1. Open the SightSpeed client, and select Options -> Preferences
2. In the Preferences Wizard, advance to Network (Step 2 of 5)
3. In the Network section, click on the Advanced button
4. Under IP info, set the Receive Port to the corresponding port you set in step 2 of the Add SightSpeed as a Service section.
5. Click Finished and Restart SightSpeed Video Conferencing

You are now configured to use SightSpeed through your firewall, and free to see.

If you have any further questions, please contact support



ZoneAlarm Firewall

 

To Setup your ZoneAlarm Software to work with SightSpeed please follow the instructions below:


1. Open ZoneAlarm and click on the Firewall link on the left side. Then in the Internet Zone Security click the Custom button.


zonestep1


2. Scroll down until the option stating Allow incoming/outgoing UDP ports is visible. Select both boxes and enter in the Ports area located at the bottom of the screen the numbers 9000-9005. Click Apply to save the changes and the main menu for the fire wall option is visible again.

 

zonestep2 


3. Repeat the previous step under the area entitled Trusted Zone Security.

Configure the SightSpeed Video Conference Receive Port


1. Open the SightSpeed client, and select Options -> Preferences
2. In the Preferences Wizard, advance to Network (Step 2 of 5)
3. In the Network section, click on the Advanced button
4. Under IP info, set the Receive Port to the corresponding port you set in step 2 of the Add SightSpeed as a Service section.
5. Click Finished and Restart SightSpeed Video Conferencing

You are now configured to use SightSpeed through your firewall, and free to see.

If you have any further questions, please contact support
 

 



Windows XP Service Pack 2 Firewall

 

Windows XP Service Pack 2 Firewall.


SightSpeed is fully compatible with the Windows XP Service Pack 2 firewall and requires no changes be made.


 



Norton/Symantec Firewalls

 

Configuring Norton Internet Security/Personal Firewall

 

nis0

 

1. In the Norton Internet Security control panel click on 'Personal Firewall'

 

nis1


2. At the bottom right click on 'Configure'

 

/nis2


3. From the Personal Firewall configuration window select the 'Programs' tab.

 

nis3


4. Locate SightSpeed in the list of programs, and under the 'Internet Access' column be sure to set it to 'Allow', then click OK.

 

Norton Internet Security/Personal Firewall is now configured to work with SightSpeed

 



McAffee Firewalls

McAfee Personal Firewall configuration

1. Click Start, click All Programs, point to McAfee, and then click McAfee Security Center or McAfee Personal Firewall.


2. Select Internet and Network..

 

 mcaffee1.jpg


3. Select Advanced in the Firewall configuration pane

 

mcaffee2.jpg 

 

4. Select Program Permissions. A list of applications and their permissions for accessing local networks and the Internet are displayed. Locate SightSpeed  in the Program list.

 

mcaffee3.jpg 

 

5. Select Action - Grant Full Access for SightSpeed and click on OK


 



Trend Micro

 

1. Open Trend Micro Main Console

 

http://www.sightspeed.com/images/faq/Dell_Video_Chat/Dell_Troubleshooting/tm1.jpg

 

2. Go to Home Network & Firewall Controls and Click on Settings

 

 http://www.sightspeed.com/images/faq/Dell_Video_Chat/Dell_Troubleshooting/tm2.jpg

 

 

3. Click on Advanced Settings

 

http://www.sightspeed.com/images/faq/Dell_Video_Chat/Dell_Troubleshooting/tm3.jpg

 

4. Go to Program Control on the top menu and click Add

 

http://www.sightspeed.com/images/faq/Dell_Video_Chat/Dell_Troubleshooting/tm4.jpg

 

5. Type “SightSpeed” on the Description; Under Select Program browse to the file location of the SightSpeed.exe (C:\Program Files\SightSpeed\SightSpeed.exe); Select Simple next to Settings, Select Allow next to Firewall Response, and click OK.

 

http://www.sightspeed.com/images/faq/Dell_Video_Chat/Dell_Troubleshooting/tm5.jpg

 

6. Verify that SightSpeed is listed under the Program Control



Firewalls - Enterprise

 

Enterprise Users

SightSpeed requires a default route to the Internet. If your organization only allows proxied connections, SightSpeed will not work correctly.

If you organization allows all outbound traffic, then you do not need to further configure your firewall.

If your organization filters outbound traffic based upon type, then you can do any of the following:

  • Filter based on Source Port:
    Add a rule which allows outgoing UDP traffic (Destination Port=Any) from source ports 9000 through 9005 on your internal network to the Internet.
  • Filter based on Source IP:
    Add a rule which allows outgoing UDP traffic (Destination Port=Any) from source IP or computer that is using SightSpeed to the internet.

Modify the rule to allow the return traffic associated with the connection. This is usually implied with most firewalls.

If you wish, you can have SightSpeed use another source port. The source port number can be changed under Advanced Network settings in the Software preferences Wizard.

Note: Some VPN configurations conflict with SIP, the signaling protocol used by SightSpeed. Specifically, they may cause all Internet traffic to get routed over the VPN, instead of just the traffic specifically destined for the private network. Such routing configurations can interfere with the SIP server's mechanism for keeping track of registered clients. If you are having issues try disabling the VPN, and then restarting SightSpeed. If that works, your options are a) continue using SightSpeed with VPN disabled; or b) consider modifying the VPN configuration so that only VPN-bound traffic flows over the VPN.

 



Microsoft ISA2004 Configuration

How to configure ISA 2004 to safely allow SightSpeed traffic in and out of your network

For SightSpeed to properly work with Microsoft ISA 2004, you will need to set up a rule allowing the outbound UDP traffic from source ports 9000-9005.

1. In the ISA 2004 Management Console, Right-Click'Firewall Policy' and select New Access Rule.

2. Select 'Allow'.

3. Apply the Rule to 'All Outbound Traffic'.

4. Click the 'Ports...' button and select the 'Limit Access to traffic from this range of source ports:' and then enter the port range you have selected for SightSpeed (the default is 9000-9005), and click OK.

5. Select the Source Networks that the new rule should apply to, this should be 'Internal' if you are running a standard edge configuration.

6. Select 'External' as the destination network.



Microsoft ISA 2000

To properly work with ISA2000, SightSpeed uses the Microsoft Firewall Client. This is due to ISA2000's lack of source port filtering in its firewall rules. The instructions below will walk you through configuring the Firewall Client for SightSpeed. If you do not wish to use the firewall client, then your only other option is to allow all outbound UDP traffic for the clients who want to use SightSpeed. ISA2004 does not have this issue.

1. Open up a MMC with the ISA manager. Click on Click on "Client Configuration", then Firewall Client

2. Click on the "Application Settings" tab. In this screen you are going to add two entries for SightSpeed

3. Click on the "New" button. Create an entry using the following details. Then click OK

4. Click on the "New" button again. Create an entry using the following details.

5. The ISA server is now configured.

6. On the client machine needing access you must install the Firewall client. To do this, open up the share on the server (If you ISA box is called ISA2000, then open My Computer and navigate to ISA2000 . There is an installer file there to use. You can only find the installer on the ISA machines share.



Cisco PIX Configuration

For SightSpeed to properly work in a Cisco Pix setup, you will need to set up a rule allowing the outbound UDP traffic from source port 9000.

This is done by creating an access-list entry and applying it to your internal interface. The syntax below should work with all versions of PIX.

access-list 101 permit udp any any range 9000 9005
access-group 101 in interface inside

a Top 25 product - PC World, May 21, 2007 The Next Level of Video Conferencing – Financial Times, May 11, 2007 2007 IP Communication Services Company of the Year - Frost & Sullivan, November 2006