Configuración de Firewall de red para CRC

Descripción general

Las siguientes reglas del firewall son para H.323 y el acceso de punto de conexión de SIP para reuniones y seminarios web de Zoom. Estas reglas se deben aplicar al tráfico saliente. Zoom se comunicará con el puerto de destino recibido cuando el cliente realice su conexión. El firewall debe estar configurado para permitir estas conexiones de retorno.

Este artículo trata sobre:

Acceso de punto final de H.323 a conector de sala en la nube de Zoom

ProtocoloPuertos

Destino

 

TCP

 

443
1720
3000-4000

IPv4:

3.7.35.0/25
3.21.137.128/25
3.25.41.128/25
3.80.20.128/25
3.104.34.128/25
3.120.121.0/25
3.127.194.128/25
3.208.72.0/25
3.235.71.128/25
3.235.72.128/25
3.235.73.0/25
3.235.82.0/23
3.235.96.0/23
4.34.125.128/25
4.35.64.128/25
8.5.128.0/23
13.52.6.128/25
15.220.80.0/24
15.220.81.0/25
18.254.23.128/25
18.254.61.0/25
20.203.158.80/28
20.203.190.192/26
50.239.202.0/23
50.239.204.0/24
52.61.100.128/25
52.202.62.192/26
64.125.62.0/24
64.211.144.0/24
64.224.32.0/19
65.39.152.0/24
69.174.57.0/24
69.174.108.0/22
99.79.20.0/25
101.36.167.0/24
101.36.170.0/23
103.122.166.0/23
111.33.115.0/25
111.33.181.0/25
115.110.154.192/26
115.114.56.192/26
115.114.115.0/26
115.114.131.0/26
120.29.148.0/24
121.244.146.0/27
134.224.0.0/16
144.195.0.0/16
147.124.96.0/19
149.137.0.0/17
156.45.0.0/17
159.124.0.0/16
160.1.56.128/25
161.199.136.0/22
162.12.232.0/22
162.255.36.0/22
165.254.88.0/23
166.108.64.0/18
170.114.0.0/16
173.231.80.0/20
192.204.12.0/22
198.251.128.0/17
202.177.207.128/27
203.200.219.128/27
204.80.104.0/21
204.141.28.0/22
206.247.0.0/16
207.226.132.0/24
209.9.211.0/24
209.9.215.0/24
213.19.144.0/24
213.19.153.0/24
213.244.140.0/24
221.122.63.0/24
221.122.64.0/24
221.122.88.64/27
221.122.88.128/25
221.122.89.128/25
221.123.139.192/27


IPv6:
2407:30C0::/32
2600:9000:2600::/48
2620:123:2000::/40

 

UDP

 

3000-4000

IPv4:

3.7.35.0/25
3.21.137.128/25
3.25.41.128/25
3.80.20.128/25
3.104.34.128/25
3.120.121.0/25
3.127.194.128/25
3.208.72.0/25
3.235.71.128/25
3.235.72.128/25
3.235.73.0/25
3.235.82.0/23
3.235.96.0/23
4.34.125.128/25
4.35.64.128/25
8.5.128.0/23
13.52.6.128/25
15.220.80.0/24
15.220.81.0/25
18.254.23.128/25
18.254.61.0/25
20.203.158.80/28
20.203.190.192/26
50.239.202.0/23
50.239.204.0/24
52.61.100.128/25
52.202.62.192/26
64.125.62.0/24
64.211.144.0/24
64.224.32.0/19
65.39.152.0/24
69.174.57.0/24
69.174.108.0/22
99.79.20.0/25
101.36.167.0/24
101.36.170.0/23
103.122.166.0/23
111.33.115.0/25
111.33.181.0/25
115.110.154.192/26
115.114.56.192/26
115.114.115.0/26
115.114.131.0/26
120.29.148.0/24
121.244.146.0/27
134.224.0.0/16
144.195.0.0/16
147.124.96.0/19
149.137.0.0/17
156.45.0.0/17
159.124.0.0/16
160.1.56.128/25
161.199.136.0/22
162.12.232.0/22
162.255.36.0/22
165.254.88.0/23
166.108.64.0/18
170.114.0.0/16
173.231.80.0/20
192.204.12.0/22
198.251.128.0/17
202.177.207.128/27
203.200.219.128/27
204.80.104.0/21
204.141.28.0/22
206.247.0.0/16
207.226.132.0/24
209.9.211.0/24
209.9.215.0/24
213.19.144.0/24
213.19.153.0/24
213.244.140.0/24
221.122.63.0/24
221.122.64.0/24
221.122.88.64/27
221.122.88.128/25
221.122.89.128/25
221.123.139.192/27


IPv6:
2407:30C0::/32
2600:9000:2600::/48
2620:123:2000::/40

Puerto de señal: TCP 1720

Nota: Abra ALG (puerta de enlace de capa de la aplicación) para compatibilidad con H.323

Acceso de punto final de SIP a conector de sala en la nube de Zoom

ProtocoloPuertos

Destino

 

TCP

 

443
3000-4000
5060-5061

 

IPv4:

3.7.35.0/25
3.21.137.128/25
3.25.41.128/25
3.80.20.128/25
3.104.34.128/25
3.120.121.0/25
3.127.194.128/25
3.208.72.0/25
3.235.71.128/25
3.235.72.128/25
3.235.73.0/25
3.235.82.0/23
3.235.96.0/23
4.34.125.128/25
4.35.64.128/25
8.5.128.0/23
13.52.6.128/25
15.220.80.0/24
15.220.81.0/25
18.254.23.128/25
18.254.61.0/25
20.203.158.80/28
20.203.190.192/26
50.239.202.0/23
50.239.204.0/24
52.61.100.128/25
52.202.62.192/26
64.125.62.0/24
64.211.144.0/24
64.224.32.0/19
65.39.152.0/24
69.174.57.0/24
69.174.108.0/22
99.79.20.0/25
101.36.167.0/24
101.36.170.0/23
103.122.166.0/23
111.33.115.0/25
111.33.181.0/25
115.110.154.192/26
115.114.56.192/26
115.114.115.0/26
115.114.131.0/26
120.29.148.0/24
121.244.146.0/27
134.224.0.0/16
144.195.0.0/16
147.124.96.0/19
149.137.0.0/17
156.45.0.0/17
159.124.0.0/16
160.1.56.128/25
161.199.136.0/22
162.12.232.0/22
162.255.36.0/22
165.254.88.0/23
166.108.64.0/18
170.114.0.0/16
173.231.80.0/20
192.204.12.0/22
198.251.128.0/17
202.177.207.128/27
203.200.219.128/27
204.80.104.0/21
204.141.28.0/22
206.247.0.0/16
207.226.132.0/24
209.9.211.0/24
209.9.215.0/24
213.19.144.0/24
213.19.153.0/24
213.244.140.0/24
221.122.63.0/24
221.122.64.0/24
221.122.88.64/27
221.122.88.128/25
221.122.89.128/25
221.123.139.192/27


IPv6:
2407:30C0::/32
2600:9000:2600::/48
2620:123:2000::/40

 

UDP

 

3000-4000
5060
9000-10000

IPv4:

3.7.35.0/25
3.21.137.128/25
3.25.41.128/25
3.80.20.128/25
3.104.34.128/25
3.120.121.0/25
3.127.194.128/25
3.208.72.0/25
3.235.71.128/25
3.235.72.128/25
3.235.73.0/25
3.235.82.0/23
3.235.96.0/23
4.34.125.128/25
4.35.64.128/25
8.5.128.0/23
13.52.6.128/25
15.220.80.0/24
15.220.81.0/25
18.254.23.128/25
18.254.61.0/25
20.203.158.80/28
20.203.190.192/26
50.239.202.0/23
50.239.204.0/24
52.61.100.128/25
52.202.62.192/26
64.125.62.0/24
64.211.144.0/24
64.224.32.0/19
65.39.152.0/24
69.174.57.0/24
69.174.108.0/22
99.79.20.0/25
101.36.167.0/24
101.36.170.0/23
103.122.166.0/23
111.33.115.0/25
111.33.181.0/25
115.110.154.192/26
115.114.56.192/26
115.114.115.0/26
115.114.131.0/26
120.29.148.0/24
121.244.146.0/27
134.224.0.0/16
144.195.0.0/16
147.124.96.0/19
149.137.0.0/17
156.45.0.0/17
159.124.0.0/16
160.1.56.128/25
161.199.136.0/22
162.12.232.0/22
162.255.36.0/22
165.254.88.0/23
166.108.64.0/18
170.114.0.0/16
173.231.80.0/20
192.204.12.0/22
198.251.128.0/17
202.177.207.128/27
203.200.219.128/27
204.80.104.0/21
204.141.28.0/22
206.247.0.0/16
207.226.132.0/24
209.9.211.0/24
209.9.215.0/24
213.19.144.0/24
213.19.153.0/24
213.244.140.0/24
221.122.63.0/24
221.122.64.0/24
221.122.88.64/27
221.122.88.128/25
221.122.89.128/25
221.123.139.192/27


IPv6:
2407:30C0::/32
2600:9000:2600::/48
2620:123:2000::/40

Reglas del firewall para otros servicios