h.323 compatibility

Linux Netfilter discussions
 help / color / mirror / Atom feed

* h.323 compatibility
@ 2003-11-19  2:12 Marc Williams
  2003-11-19 12:33 ` Jozsef Kadlecsik
  0 siblings, 1 reply; 4+ messages in thread
From: Marc Williams @ 2003-11-19  2:12 UTC (permalink / raw)
  To: netfilter list

Even though I'm new to this list, I think that this should probably be
addressed by Jozsef Kadlecsik.

Jozsef, I've read a couple of your posts on this list that seem to
indicate that there is a known incompatibility between your h323
conntrack module and the openh323 libraries.

Is this accurate?  If so, are there any plans to address this
incompatibility?  I've been unable to get the GNU gatekeeper functioning
correctly behind an iptables firewall for possibly this reason.

Thanks!

p.s.
Btw, I tried emailing you about this but it was bounced saying that your
MTA rejected my email saying my site was banned because of unsolicited
email.  I can assure you that there has never been one single spam
emanating from my site ever.  And if you're banning my ISP - Comcast -
you've just banned the majority of broadband users in the US.

^ permalink raw reply	[flat|nested] 4+ messages in thread

* RE: h.323 compatibility
@ 2003-11-19  2:21 George Vieira
  2003-11-19  2:48 ` Marc Williams
  0 siblings, 1 reply; 4+ messages in thread
From: George Vieira @ 2003-11-19  2:21 UTC (permalink / raw)
  To: netfilter list

>And if you're banning my ISP - Comcast - you've just banned the majority of broadband users in the US.
Hoah!!  How cool.. :)

I have no problems with H323 and using NetMeeting behind a 2.4.19 kernel firewall. The only thing that was needed to get 2 people who are both behind linux firewalls was that 1 had to Host a Meeting for someone outside to connect. I found that part weird..

Have you tried this patch at all yet. Just remember there's 2 modules neededing to be loaded a I forgot one the first time around.

Thanks,
____________________________________________
George Vieira

> -----Original Message-----
> From: Marc Williams [mailto:marcw@onlymooo.com]
> Sent: Wednesday, 19 November 2003 1:13 PM
> To: netfilter list
> Subject: h.323 compatibility
> 
> 
> Even though I'm new to this list, I think that this should probably be
> addressed by Jozsef Kadlecsik.
> 
> Jozsef, I've read a couple of your posts on this list that seem to
> indicate that there is a known incompatibility between your h323
> conntrack module and the openh323 libraries.
> 
> Is this accurate?  If so, are there any plans to address this
> incompatibility?  I've been unable to get the GNU gatekeeper 
> functioning
> correctly behind an iptables firewall for possibly this reason.
> 
> Thanks!
> 
> 
> p.s.
> Btw, I tried emailing you about this but it was bounced 
> saying that your
> MTA rejected my email saying my site was banned because of unsolicited
> email.  I can assure you that there has never been one single spam
> emanating from my site ever.  And if you're banning my ISP - Comcast -
> you've just banned the majority of broadband users in the US.
> 
> 
> 


^ permalink raw reply	[flat|nested] 4+ messages in thread

* RE: h.323 compatibility
  2003-11-19  2:21 George Vieira
@ 2003-11-19  2:48 ` Marc Williams
  0 siblings, 0 replies; 4+ messages in thread
From: Marc Williams @ 2003-11-19  2:48 UTC (permalink / raw)
  To: George Vieira; +Cc: netfilter list

On Tue, 2003-11-18 at 20:21, George Vieira wrote:
> >And if you're banning my ISP - Comcast - you've just banned the majority of broadband users in the US.
> Hoah!!  How cool.. :)
> 

:-)


> I have no problems with H323 and using NetMeeting behind a 2.4.19 kernel firewall. The only thing that was needed to get 2 people who are both behind linux firewalls was that 1 had to Host a Meeting for someone outside to connect. I found that part weird..
> 
> Have you tried this patch at all yet. Just remember there's 2 modules neededing to be loaded a I forgot one the first time around.
> 

The issue isn't with Netmeeting.  Rather it's with two other apps I run
that use openh323 - Gnomemeeting and GNUgk both running behind an
iptables FW.  I am indeed having problems, particularly with the
gatekeeper.  Thus my question about compatibility.



> > -----Original Message-----
> > From: Marc Williams [mailto:marcw@onlymooo.com]
> > Sent: Wednesday, 19 November 2003 1:13 PM
> > To: netfilter list
> > Subject: h.323 compatibility
> > 
> > 
> > Even though I'm new to this list, I think that this should probably be
> > addressed by Jozsef Kadlecsik.
> > 
> > Jozsef, I've read a couple of your posts on this list that seem to
> > indicate that there is a known incompatibility between your h323
> > conntrack module and the openh323 libraries.
> > 
> > Is this accurate?  If so, are there any plans to address this
> > incompatibility?  I've been unable to get the GNU gatekeeper 
> > functioning
> > correctly behind an iptables firewall for possibly this reason.
> > 
> > Thanks!
> > 
> > 
> > p.s.
> > Btw, I tried emailing you about this but it was bounced 
> > saying that your
> > MTA rejected my email saying my site was banned because of unsolicited
> > email.  I can assure you that there has never been one single spam
> > emanating from my site ever.  And if you're banning my ISP - Comcast -
> > you've just banned the majority of broadband users in the US.
> > 
> > 
> > 
> 
> 



^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: h.323 compatibility
  2003-11-19  2:12 h.323 compatibility Marc Williams
@ 2003-11-19 12:33 ` Jozsef Kadlecsik
  0 siblings, 0 replies; 4+ messages in thread
From: Jozsef Kadlecsik @ 2003-11-19 12:33 UTC (permalink / raw)
  To: Marc Williams; +Cc: netfilter list

Hi Marc,

On Tue, 18 Nov 2003, Marc Williams wrote:

> Jozsef, I've read a couple of your posts on this list that seem to
> indicate that there is a known incompatibility between your h323
> conntrack module and the openh323 libraries.

Yes. The h323 conntrack/nat modules work due to sheer luck on how IP
addresses/ports are encoded in H.225/H.245 messages.

> Is this accurate?  If so, are there any plans to address this
> incompatibility?

There are plans to implement the modules properly next year.

> I've been unable to get the GNU gatekeeper functioning
> correctly behind an iptables firewall for possibly this reason.

If you have got a gatkeeper up and running, then simply throw away the
h323 conntrack/nat helpers, set up the proxy functionality in GNU
gatekeeper and rely on that.

> Btw, I tried emailing you about this but it was bounced saying that your
> MTA rejected my email saying my site was banned because of unsolicited
> email.  I can assure you that there has never been one single spam
> emanating from my site ever.  And if you're banning my ISP - Comcast -
> you've just banned the majority of broadband users in the US.

Yes, comcast.net is on the blacklist of our site. After the next
mail gateway upgrade we'll have the ability to setup personal blacklist
and I'll put aol.com, yahoo.com etc. onto my list. Sorry.

Best regards,
Jozsef
-
E-mail  : kadlec@blackhole.kfki.hu, kadlec@sunserv.kfki.hu
PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt
Address : KFKI Research Institute for Particle and Nuclear Physics
          H-1525 Budapest 114, POB. 49, Hungary

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2003-11-19 12:33 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-11-19  2:12 h.323 compatibility Marc Williams
2003-11-19 12:33 ` Jozsef Kadlecsik
  -- strict thread matches above, loose matches on Subject: below --
2003-11-19  2:21 George Vieira
2003-11-19  2:48 ` Marc Williams

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox