[jitsi-users] voip and a strict NAT/Firewall


#1

Hi,

I want to do voip with jitsi. The other person has jitsi too. But I'm
sitting behind a pretty strict NAT/Firewall.

Port 80, 443 and IMAP are allowed and only TCP. But port 53 is allowed
for UDP. I don't know if port 53 is allowed for TCP too, but I doubt
that.

So is it somehow possible to configure jitsi to only user port 53 for
its UDP traffic and e.g. port 443 for TCP traffic?

Thanks in advance,
--rik


#2

Hey Rik,

Have you tried making calls with Jitsi via a GTalk account? Jitsi
supports TCP tunnelling with the Google mechanisms so that could work.

I am afraid using port 53 would not be a viable option. First, Jitsi
would require root/Administrator privileges to bind on that port and
even if it gets it, it is not very likely the fronting NAT would
attribute the same port.

If you don't want to use a VPN as suggested by others, your best bet may
be the installation of a SIP server such as Asterisk on the public
internet and making that server listen on port 53. This would still kill
RTCP but you should be able to talk to your contacts.

Cheers,
Emil

На 03.11.11 13:37, Rieker Flaik написа:

···

Hi,

I want to do voip with jitsi. The other person has jitsi too. But I'm
sitting behind a pretty strict NAT/Firewall.

Port 80, 443 and IMAP are allowed and only TCP. But port 53 is allowed
for UDP. I don't know if port 53 is allowed for TCP too, but I doubt
that.

So is it somehow possible to configure jitsi to only user port 53 for
its UDP traffic and e.g. port 443 for TCP traffic?

Thanks in advance,
--rik

--
Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead France
Jitsi
emcho@jitsi.org PHONE: +33.1.77.62.43.30
http://jitsi.org FAX: +33.1.77.62.47.31


#3

I have been unable to get Jitsi to work with GoogleTalk. What is the
secret?

Paul

···

El jue, 03-11-2011 a las 21:15 +0100, Emil Ivov escribió:

Hey Rik,

Have you tried making calls with Jitsi via a GTalk account? Jitsi
supports TCP tunnelling with the Google mechanisms so that could work.

I am afraid using port 53 would not be a viable option. First, Jitsi
would require root/Administrator privileges to bind on that port and
even if it gets it, it is not very likely the fronting NAT would
attribute the same port.

If you don't want to use a VPN as suggested by others, your best bet may
be the installation of a SIP server such as Asterisk on the public
internet and making that server listen on port 53. This would still kill
RTCP but you should be able to talk to your contacts.

Cheers,
Emil

На 03.11.11 13:37, Rieker Flaik написа:
> Hi,
>
> I want to do voip with jitsi. The other person has jitsi too. But I'm
> sitting behind a pretty strict NAT/Firewall.
>
> Port 80, 443 and IMAP are allowed and only TCP. But port 53 is allowed
> for UDP. I don't know if port 53 is allowed for TCP too, but I doubt
> that.
>
> So is it somehow possible to configure jitsi to only user port 53 for
> its UDP traffic and e.g. port 443 for TCP traffic?
>
> Thanks in advance,
> --rik
>
>
>


#4

In recent letter I mentioned inability to use GoogleTalk with Jitsi· I
should add that this is on Ubuntu 11.10. It rings at the other side but
neither side hears anything at the moment of communication, and on my
side I geta message that the address of the other side is zero, or
something to that effect.

Paul

···

El jue, 03-11-2011 a las 21:15 +0100, Emil Ivov escribió:

Hey Rik,

Have you tried making calls with Jitsi via a GTalk account? Jitsi
supports TCP tunnelling with the Google mechanisms so that could work.

I am afraid using port 53 would not be a viable option. First, Jitsi
would require root/Administrator privileges to bind on that port and
even if it gets it, it is not very likely the fronting NAT would
attribute the same port.

If you don't want to use a VPN as suggested by others, your best bet may
be the installation of a SIP server such as Asterisk on the public
internet and making that server listen on port 53. This would still kill
RTCP but you should be able to talk to your contacts.

Cheers,
Emil

На 03.11.11 13:37, Rieker Flaik написа:
> Hi,
>
> I want to do voip with jitsi. The other person has jitsi too. But I'm
> sitting behind a pretty strict NAT/Firewall.
>
> Port 80, 443 and IMAP are allowed and only TCP. But port 53 is allowed
> for UDP. I don't know if port 53 is allowed for TCP too, but I doubt
> that.
>
> So is it somehow possible to configure jitsi to only user port 53 for
> its UDP traffic and e.g. port 443 for TCP traffic?
>
> Thanks in advance,
> --rik
>
>
>


#5

Hey Rik,

Have you tried making calls with Jitsi via a GTalk account? Jitsi
supports TCP tunnelling with the Google mechanisms so that could work.

No, but then I tried it as you pointed out that it could work. But we
faild to establish a connection.

I am afraid using port 53 would not be a viable option. First, Jitsi
would require root/Administrator privileges to bind on that port and
even if it gets it, it is not very likely the fronting NAT would
attribute the same port.

If you don't want to use a VPN as suggested by others, your best bet may
be the installation of a SIP server such as Asterisk on the public
internet and making that server listen on port 53. This would still kill
RTCP but you should be able to talk to your contacts.

that sound like another alternative.

thanks

···

On Thu, 2011-11-03 at 21:15 +0100, Emil Ivov wrote:

Cheers,
Emil

На 03.11.11 13:37, Rieker Flaik написа:
> Hi,
>
> I want to do voip with jitsi. The other person has jitsi too. But I'm
> sitting behind a pretty strict NAT/Firewall.
>
> Port 80, 443 and IMAP are allowed and only TCP. But port 53 is allowed
> for UDP. I don't know if port 53 is allowed for TCP too, but I doubt
> that.
>
> So is it somehow possible to configure jitsi to only user port 53 for
> its UDP traffic and e.g. port 443 for TCP traffic?
>
> Thanks in advance,
> --rik
>
>
>