Firewall Recommendations

Firewall Recommendations

Typical users

It is not normally necessary to make any adjustments to your firewall software or home network.

By default, TCP ports 80 and 443 are open. Some firewall rules only allow for TCP traffic over port 443, make sure that all traffic can pass over this port.

Some firewalls may see TCP port 3478 being used for screen sharing. You will need to allow this port if you experience an error that screen sharing was blocked.

Corporate IT Networks

The mechanisms for WebRTC need to provide the web browser with a few key capabilities:

  • Learn as best it can, the topology between itself, and the peer it wants to communicate with
  • Establish connectivity on the best path through a given topology
  • Have a fallback mechanism if all else fails

WebRTC standards require the use of three IEFT NAT traversal standards to address these issues:

  • Interactive Connectivity Establishment (ICE) – RFC 5245
  • Session Traversal Utilities for NAT (STUN) – RFC 5389
  • Traversal Using Relay NAT (TURN) – RFC 5766

Every WebRTC session requires the use of these tools when communicating with peers. Once the WebRTC sessions are properly signaled and accepted, the process of NAT/Firewall discovery and traversal begins. When it is finished, a communication path is established and media can flow. Thanks to these tools, a good chunk of the problematic topology possibilities can be dealt with, and WebRTC can just work.

However, still not all cases are covered. If you have spent much time relying on WebRTC, you may have encountered times when no talk path was able to be established. The scenarios described in this post are the more common home broadband router cases, and they tend to be relatively easy for STUN, ICE, and TURN to overcome. Restrictive NATs and Firewalls found in enterprises, or hotel or courtesy WiFi hotspots can still cause issues.

Important: if you require specific IP addresses to open channels for, contact Support. Note that all IP Addresses are subject to change and use of the DNS entries above is recommended.

    • Related Articles

    • Recommended Firewall Settings

      Below are the recommended settings to provide you the best experience for using your JabberTel VOIP Service: **Note: Not all settings will apply to every firewall Ensure there is no Double NAT (there should only be one router on the phone network) ...
    • Attendee In-Meeting Troubleshooting

      This article provides troubleshooting steps to resolve the most common troubleshooting questions attendees might have. Audio Troubleshooting Webcam Troubleshooting Screen Sharing Connectivity Troubleshooting Questions about content Audio ...
    • Screen Sharing Troubleshooting

      Important: If you are sharing your screen and see an error message that you have stopped sharing, this may be a connection problem. Сheck your internet connection. If you are sharing a PowerPoint or PDF document, use the Content Library and upload ...
    • How Is a VoIP Phone System Set Up?

      How Is a VoIP Phone System Set Up? Before we jump into the details, we need to establish what sets Voice over Internet Protocol (VoIP) phone apart from an analog phone. An analog telephone connects directly with the Public Switched Telephone Network ...
    • Grandstream GXP1782

      GS-GXP1782Powerful Mid-range 8-Line, 4SIP accountsby Grandstream Features: __________________________________________________________________  The GXP1782 is a powerful mid-range IP phone with advanced telephony features. This mid-range IP phone ...