Is it okay to leave the Uverse gateway setting for Obi in DMZ plus mode ?
carl:
Because I had problems with one way audio on my second Localphone DID, I had to change the configuration of the 2 wire u-verse gateway to DMZ plus mode.
Localphone gave me an additional account for the second DID , but I cannot register it on Obi100 because I already have GV and my US localphone DID on my Obi 100. :-\
Anyone here who knows ? I would not leave my regular computer exposed to DMZ plus mode.
Stewart:
Instead of DMZ Plus mode, you may be able to forward just the SIP port, or possibly work around the problem with STUN.
If you must use DMZ Plus, forward ports that you don't want exposed to a dummy (nonexistent) device.
If you have DIDs on two LP accounts and want them to ring to the same place, get a free iNum DID for the account that the OBi registers to and set the iNum to forward to SIP device (the default). On the other account, set the foreign DID to forward to the iNum (free).
carl:
Hi Stewart,
The issue with the 3600HGV gateway is that there is no manual and no real technical support for it- it is a propriatory device and ATT simply will not answer any questions whioch go beyond setting up you internet service.
Looking at the system info of the gateway my computer is still in Private (NAT) mode while Obi100 is now in DMZ plus mode.( it needed an Obi reboot to get there). So my assumption is ?? that my computer is still okay, while my Obi is exposed to all kinds of things ?? .
I quite frankly, do not see any way to do hacks in the gateway, especially with no manual.
The only possibility which it gives is let certain applications pass through in the " individual application settings" option. I am wondering which application that woould be in my case. I tried the port forwarding the way the other poster recommended with no success.
The screen looks more or less as follows:
Allow device application traffic to pass through firewall
By default, the firewall blocks all unwanted access from the Internet. You can allow access from the Internet to applications running on computers inside your secure home network by enabling firewall pinholes. Opening firewall pinholes is also known as opening firewall ports or firewall port forwarding. To do this, associate the desired application with the computer below. If you cannot find a listing for your application, you can create a user-defined application with the protocol and port information.
To allow Internet traffic or users through the Firewall to your LAN devices, applications and servers
1) Select a computer
Choose the computer that will host applications through the firewall
Choose carl-PC
Choose carl-PC
You have chosen OBi100
2) Edit firewall settings for this computer
Maximum protection - Disallow unsolicited inbound traffic
Allow individual application(s) - Choose the application(s) that will be enabled to pass through the firewall to this computer. Click ADD to add it to the Hosted Applications list.
Filter Applications by
Application List
Hosted Applications
•All applications
•Games
•Audio/video
•Messaging and Internet Phone
•Servers
•Other
•User-defined
Age of EmpiresAge of KingsAge of WondersAliens vs PredatorAnarchy OnlineAsheron's CallBaldur's GateBattleComBattlefield CommunicatorBlack and WhiteDark ReignDark Reign 2Delta ForceDelta Force 2Descent 3Descent FreespaceDiablo (1.07+)Diablo IDiablo IIDialPadDirectX GamesDNS ServerDoomDune 2000Elite ForceEverquestF16, Mig29F22 Lightning 3F22 Raptor (Novalogic)Falcon 4.0Fighter Ace IIFighter Ace II DXFreetelFTP ServerGhost ReconGnutellaHalf LifeHeretic IIHexen IIHotline Connect 1.9HTTPS ServerI'76IMAP ServerIRCKALIKaZaALapLink GoldLIVvELocation FreeLotus Notes serverMechWarrior 3Mechwarrior 4Midtown MadnessMotocross MadnessMotorhead serverMSN Gaming ZoneMSN Gaming Zone DXMyth: The Fallen LordsNeed for SpeedNeed for Speed 3Net2PhoneNetMechNetmeeting, Default PCNNTP ServerOKWebOKWinOutlawspcAnywhere v7.5PhoneFreePOP3 ServerPPTP ServerQuake IIQuake IIIQuake III ServerRainbow SixRed AlertRise of NationsRise of RomeRoger WilcoRogue SpearShoutCast ServerSlingboxSMTP ServerSoldier of FortuneSpeak FreelySSH ServerStarCraftSWAT3Telnet ServerThe 4th ComingTiberian Sun: C&C IIITimbuktu ProTotal AnnihilationUltimaUnreal ServerUnreal TournamentVia VideoVNCVoxPhone 3.0Warbirds 2Web ServerWebPhone 3.0WinMXX WindowsXBoxXP Remote AssistanceXP Remote DesktopYahoo Pager
Add a new user-defined application
Allow all applications (DMZplus mode) - Set the selected computer in DMZplus mode. All inbound traffic, except traffic which has been specifically assigned to another computer using the "Allow individual applications" feature, will automatically be directed to this computer. The DMZplus-enabled computer is less secure because all unassigned firewall ports are opened for that computer.
Note: On LAN devices which have a Private IP address, once DMZplus mode is selected and you click save, the system will issue a new IP address to the selected computer. The computer must be set to DHCP mode to receive the new IP address from the system, and you must reboot the computer. If you are changing DMZplus mode from one computer to another computer, you must reboot both computers.
I can try to do the thing with i- numbers however considered the difficulties getting Localphone working. ( among other the necessity of re routing of my outgoing calls by LP , special dialing codes needed for the digitmap and whatever, it might be challenging to fix anything without screwing up the achieved.
RevKev:
Given that your problem is with audio (as opposed to connection), I would guess RTP is the issue.
First, take your OBi out of DMZ mode.
Second, try Stewart's suggestion of using a STUN server.
If that doesn't work, try forwarding RTP ports to your OBi...
1. Select your computer
select your OBi
2. Edit firewall settings
Allow individual applications
Add a new user defined application
Add:
Application name: RTP
Protocol: UDP
Port range: 16600-16998
carl:
Hi RevKev,
I would not know how to handle the STUN server configuration, which as everybody says, may not work anyway
But I tried your recommended user defined application and unfortunately, the problem remains the same ( as a matter of fact it got worse first, but after rebooting the gateway additionally to Obi it got back to the same one way audio.)
So, for now the Obi is back in DMZ mode and I at least created a very strong password for Obi and the gateway (maybe it does some good). :(
Navigation
[0] Message Index
[#] Next page