Nortel Networks 1000 Firmware download using UNIStim FTP

Page 150 of 910 Features

553-3001-365 Standard 4.00 August 2005

Firmware download using UNIStim FTP

Previously, IP Phones on CS 1000 and Meridian 1 systems downloaded their

firmware using Trivial File Transfer Protocol (TFTP). Firewalls often have

their well-known TFTP port (port 69) disabled to maintain security. When

port 69 is blocked, IP Phones cannot obtain firmware downloads. This

situation prevents the IP Phone from registering and coming into service.

In order to eliminate the file transfer problem with the firewalls and TFTP, a

UNIStim File Transfer Protocol (UFTP) download solution is implemented.

UFTP enhances security, because it is a proprietary protocol, as opposed to

TFTP which is an open protocol. It enables customers to improve their

firewall security by closing port 69 to block TFPT in their firewall and

policy-based switches and routers.

If a network firewall is in use, ports 5100 (UNIStim signaling) and 5105

(UFTP signaling) must be explicitly opened in the IP Phone-to-UFTP server

direction. Opening these ports enables UNIStim and UFTP firmware

download messages to travel through the firewall. Both of these ports can be

safety enabled by firewalls. See Table 23.

IMPORTANT!

For the UFTP IP Phone firmware download to work, it is necessary to

explicitly open port 5100 (UNIStim signaling) and port 5105 (UFTP

signaling).

Table 23

Source/destination port usage on either side of the connection

Port IP Phone signaling IP Phone UFTP UFTP Server

Source port 5000 (see note) 5000 (see note) 5105

Destination port 5100 5105 5000 (see note)