Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 6027 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Zoom On Premise

Sophos User2506

I have setup a virtual server for Zoom OnPrem in order to improve Zoom meetings. Inside the agency it works great, however; whenever we try and have a user connect from outside to our OnPrem server it never completes. I have setup the Zoom Meeting connector according to their documentation. I am just questioning my port forwarding settings. 

 

Rule type: DNAT

Matching Conditions

For traffic from: External IP address assigned to meeting connector

Using services: 9001 TCP/UDP

Going to: External (WAN  ADDRESS)

 

Action

Change the destination to: ZoomOnPremZC

And the service to: 8802 TCP/UDP

 

Their instructions:

One Meeting Connector Controller (350 Participants)

Example network information:

  • External IP address assigned to Meeting Connector: 173.288.57.201
  • Internal IP address for ZC: 10.100.124.238

Example Firewall Setup:

  • Forward 173.228.57.201 TCP/UDP 9001 > 10.100.124.238 TCP/UDP 8802

Deleted redundant.



This thread was automatically locked due to age.
Parents
  • 0

    Hello Sophos User2506,

    Thank you for contacting the Sophos Community.

    So if you are expecting the traffic to come from 173.288.57.201 and not another IP then your Firewall rule is correct.

    Did you select automatic Firewall rule and have another Firewall from the ZoomOnPremZC to 173.288.57.201 (shouldn't be necessary if they are the ones initiating the traffic).

    If you do a tcpdump on the WAN interface and that specific port what do you see?

    #tcpdump -eni any host 173.288.57.201 and port 9001 

    Do the same for the onpremise Zoom

    #tcpdump -eni any host x.x.x.x and port 8802

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Reply
  • 0

    Hello Sophos User2506,

    Thank you for contacting the Sophos Community.

    So if you are expecting the traffic to come from 173.288.57.201 and not another IP then your Firewall rule is correct.

    Did you select automatic Firewall rule and have another Firewall from the ZoomOnPremZC to 173.288.57.201 (shouldn't be necessary if they are the ones initiating the traffic).

    If you do a tcpdump on the WAN interface and that specific port what do you see?

    #tcpdump -eni any host 173.288.57.201 and port 9001 

    Do the same for the onpremise Zoom

    #tcpdump -eni any host x.x.x.x and port 8802

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Children
No Data
Unfiltered HTML