ZyXEL Communications ZyWALL5UTM 4.0 User Manual
ZyWALL 5/35/70 Series User’s Guide
463
Chapter 29 ALG Screen
If the primary WAN connection fails, the client needs to re-initialize the connection through
the secondary WAN port to have the connection go through the secondary WAN port.
the secondary WAN port to have the connection go through the secondary WAN port.
When the ZyWALL uses both of the WAN ports at the same time, you can configure routing
policies to specify the WAN port that the connection’s traffic is to use.
policies to specify the WAN port that the connection’s traffic is to use.
29.2 FTP
File Transfer Protocol (FTP) is an Internet file transfer service that operates on the Internet and
over TCP/IP networks. A system running the FTP server accepts commands from a system
running an FTP client. The service allows users to send commands to the server for uploading
and downloading files. The FTP ALG allows TCP packets with a port 21 destination to pass
through. If the FTP server is located on the LAN, you must also configure NAT port
forwarding and firewall rules if you want to allow access to the server from the WAN.
over TCP/IP networks. A system running the FTP server accepts commands from a system
running an FTP client. The service allows users to send commands to the server for uploading
and downloading files. The FTP ALG allows TCP packets with a port 21 destination to pass
through. If the FTP server is located on the LAN, you must also configure NAT port
forwarding and firewall rules if you want to allow access to the server from the WAN.
29.3 H.323
H.323 is a standard teleconferencing protocol suite that provides audio, data and video
conferencing. It allows for real-time point-to-point and multipoint communication between
client computers over a packet-based network that does not provide a guaranteed quality of
service. NetMeeting uses H.323.
conferencing. It allows for real-time point-to-point and multipoint communication between
client computers over a packet-based network that does not provide a guaranteed quality of
service. NetMeeting uses H.323.
29.4 RTP
When you make a VoIP call using H.323 or SIP, the RTP (Real time Transport Protocol) is
used to handle voice data transfer. See RFC 1889 for details on RTP.
used to handle voice data transfer. See RFC 1889 for details on RTP.
29.4.1 H.323 ALG Details
• The H.323 ALG supports peer-to-peer H.323 calls.
• The H.323 ALG handles H.323 calls that go through NAT or that the ZyWALL routes.
• The H.323 ALG handles H.323 calls that go through NAT or that the ZyWALL routes.
You can also make other H.323 calls that do not go through NAT or routing. Examples
would be calls between LAN IP addresses that are on the same subnet.
would be calls between LAN IP addresses that are on the same subnet.
• The H.323 ALG allows calls to go out through NAT. For example, you could make a call
from a private IP address on the LAN to a peer device on the WAN.
• You must configure the firewall and port forwarding to allow incoming (peer-to-peer)
calls from the WAN to a private IP address on the LAN (or DMZ). The following
example shows H.323 signaling and audio sessions between H.323 devices A and B.
example shows H.323 signaling and audio sessions between H.323 devices A and B.