Polycom V2IU 4350 user manual How Forwarding Rules Works

Page 58

User Manual V2IU 4350 Converged Network Appliance

Forwarding Rules

Forwarding Rules allows a system administrator to forward data traffic for a subnet from one interface to another, overriding the Firewall’s default drop rules.

Allowing a subnet to be forwarded is commonly used when servers with public addresses are placed behind the system. Configuring the network in this way allows the system to manage and prioritize bandwidth, sharing it between the VoIP services and the servers.

How Forwarding Rules Works

When forwarding, one address from the forwarded range of addresses must be assigned to the rule's output interface. The Polycom V2IU 4350 uses this address to act as a gateway router for the subnet. The address may be assigned using the Subinterfaces page.

Note: The subnet and forwarded addresses are not protected by the firewall. A similar method for forwarding traffic is provided by Proxy ARP. Proxy ARP is used to “bridge” addresses within a single subnet range from one interface to another. Often this is used to bridge and forward a public address to the protected side of the system without having to subnet the public address range. Proxy ARP does not require an additional gateway address on the sys- tem for the subnet, but does not allow port and protocol filtering for for- warded data.

Example

In this example:

The ISP has supplied two separate subnets to the customer:

A small one (2 hosts) for the WAN link

A large one (254 hosts) for a bank of servers

67.40.41.2 is the WAN IP address for the Polycom V2IU 4350

NAT is a private IP range of 192.168.1.xxx using the WAN address for PCs and Phones

On the LAN side of the Polycom V2IU 4350 are the following:

Private IP subnet (192.168.1.xxx)

Public IP subnet (67.40.40.xxx)

This is shown below.

3 - 40

Page 57 Page 59
Image 58
Page 57 Page 59
Contents V2IU 4350 Converged Network Appliance Trademark Information Contents Page Contents Saving and Restoring the V2IU 4350 Configuration System DiagnosticsUpgrading the V2IU 4350 Contents Page T1 Wide Area Network WAN Access Router V2IU 4350 Converged Network ApplianceFeature Summary Front Panel LEDs LED Label Activity DescriptionBack Panel Back panel of the 4350E contains the following connectionsPhysical Installation Required Tools and MaterialsDesktop Installation Wall-Mount InstallationRack-Mount Installation Administration Connecting the Power and CablesGetting Started Page Configuring the V2IU Configuration Guide For IP Centrex Applications Configuration Outline Task Subtask Application?Configuration Guide For Station Side IP PBX Applications Configure For Station Configuration Guide For Trunk Side IP PBX Applications Configure For Trunk Side IP Configuration Guide For Hosted Video Applications HotspotConfigure For Hosted Configuration Guide For Enterprise Video Applications Configure For Hosted System Configuration Configure the LAN InterfacePress Submit Page Modify an Existing Vlan Configuration Configure the WAN Interface Configuring the V2IU Frame Relay Mode and Dlci Configure the Dhcp Server Mask Delete a Dhcp IP Address Configure Hostname, Snmp and Remote Logging Disable Snmp Change the Administration Password Read-only User Enabling a Read-only UserHow Subinterfaces Works Click SubmitConfiguring Subinterfaces How the ToS Byte Setting Works Viewing or Changing the ToS Byte SettingConfiguring the V2IU Configuration Configuring the V2IU Settings in the Embedded gatekeeper mode settings This is an advanced configuration option and should H.323 Settings page includes the following two buttons Activity Alias ManipulationItem Description Neighboring H.323 Neighboring page includes the following buttons Regular Expressions Symbol Description Regular ExpressionsForwarding Rules How Forwarding Rules WorksConfiguring Forwarding Rules Page Peering Proxy How Peering Proxy WorksPage Outbound from Site C to Site a Inbound from Site a to Site C Configuring Peering Proxy Outbound from Site C to Public IP EndpointAdding an H.323 Prefix Entry Clients List Lock To configure clients list lock, use the following steps Enabling the Clients List LockActivity Monitor Type of Events Callee admission request received Call Termination Viewing the H.323 Activity Monitor Received invalid dataVoIP Configuration Configure the VoIP ALG Programmed in your IP phone Configure VoIP Subnet Routing Enter a VoIP Subnet Route Configure IP Phones, IADs or Softphones Data Networking Configuration NAT for Data TrafficProtocolPublicIPAddress/netmask-portPrivateIPAddress-port Static IP routing Firewall Configuration Enable or disable the firewall Action Description Input format Traffic Management Configuration Enable Traffic Shaping Optionally enable priority IP addresses Enable CACCloser Look at Traffic Management Classifying Upstream Traffic ManagementDownstream Traffic Management Page System Diagnostics Viewing the ALG registration code Viewing Networking InformationRouting Information Viewing Advanced System Information Accessing Troubleshooting Tools Passive Voice Call MonitoringVerify Registered Voice and Video Devices Performing a Ping Test Restarting Networking Processes Saving and Restoring the V2IU 4350 Configuration Ewn CommandDownload a Backup File from a Remote Tftp Server Create a Backup File and Save in Local FlashCopy a Backup File to a Remote Tftp Server List the Available Backup FilesDelete a Backup File Page Upgrade Procedure for Software Revision 1.3.11 or Later Upgrading the V2IUPage Troubleshooting Tips AppendixSpecifications Regulatory Notices Other Rights and Limitations Regulatory Notices Warranty and Warranty Exclusions Regulatory Notices Page Regulatory Notices Page Regulatory Notices FCC Part 68 Notice to Users of Digital Service Industry Canada IC Notice Warranty and Repair Service Center
Top Page Image Contents