Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 27 subscribers
  • Views 11473 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DLNA and VoIP over Sophos XG

StefanEhrhardt

Good morning together,

Pleas ehave a kind look at the following diagram.

This is how I want to restructure my home network. My concern is, that my DLNA Clients and VoIP Fons will not find their Server anymore. Can you please help me out what needs to be configured on the firewall to pass alls Multicast/DLNA traffic? Do you expect any problems for my VoIP traffic?

Thanks in advance.



This thread was automatically locked due to age.
  • 0

    Hi Stefan,

    Where are the VoIP and DLNA servers located? Do you have a firewall rule to allow traffic for the required the services. Is there any information provided from the VoIP and DLNA support on what needs to be configured on Sophos Firewall to allow the traffic?

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Saching,

    well these are more or less my questions you mentioned.


    Here are more details:

    The DLNA and VoIP Server is a AVM Cable Router incl. Modem. I will use this Box as NAS, VPN Gateway, DLNA Server and VoIP Server. the FIrewall is a Sophos UTM120 with a XG Home license connected to a DELL X-Series switch (unmanaged) where all my clients are connected.

    So my question is how to create proper rules for the DLNA traffic towards my lan zone and if I need some special rules for my VoIP Server so my fons are able to connect to it.

    Please be aware we are talking about a home network, so yes I could youse some extra server in my LAN zone for this tasks , but this is more power consuming an I may get some problems with my wife if I build a datacenter in our spare room ;(

  • 0 in reply to StefanEhrhardt

    DLNA uses uPNP for device discovery, etc. -- and uPNP does not traverse firewalls well, if at all.  You may be able to rig something up with multicast routing, which one of my staff tried with his home UTM (it didn't work) ... but I wouldn't bet on it.  DLNA specs are just not designed with any sort of enterprise-level security (firewalls, etc.) in mind, typical of the consumer industry.

    A little "light reading" regarding uPNP:  https://en.wikipedia.org/wiki/Universal_Plug_and_Play

    I imagine it won't work with XG either, but you can take a look at PIM-SM routing and see what you can do.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Cookie Information Banner